Vulnerabilities > Squidex IO
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-12-07 | CVE-2023-46857 | Cross-site Scripting vulnerability in Squidex.Io Squidex Squidex before 7.9.0 allows XSS via an SVG document to the Upload Assets feature. | 5.4 |
| 2023-11-07 | CVE-2023-46252 | Cross-site Scripting vulnerability in Squidex.Io Squidex 7.8.2 Squidex is an open source headless CMS and content management hub. | 6.1 |
| 2023-11-07 | CVE-2023-46253 | Path Traversal vulnerability in Squidex.Io Squidex 7.8.2 Squidex is an open source headless CMS and content management hub. | 7.2 |
| 2023-11-07 | CVE-2023-46744 | Cross-site Scripting vulnerability in Squidex.Io Squidex Squidex is an open source headless CMS and content management hub. | 5.4 |
| 2023-07-10 | CVE-2023-3580 | Unspecified vulnerability in Squidex.Io Squidex Improper Handling of Additional Special Element in GitHub repository squidex/squidex prior to 7.4.0. | 4.3 |
| 2023-03-18 | CVE-2023-24278 | Cross-site Scripting vulnerability in Squidex.Io Squidex Squidex before 7.4.0 was discovered to contain a squid.svg cross-site scripting (XSS) vulnerability. | 6.1 |
| 2023-02-02 | CVE-2023-0642 | Cross-Site Request Forgery (CSRF) vulnerability in Squidex.Io Squidex Cross-Site Request Forgery (CSRF) in GitHub repository squidex/squidex prior to 7.4.0. | 6.5 |
| 2023-02-02 | CVE-2023-0643 | Improper Handling of Additional Special Element vulnerability in Squidex.Io Squidex Improper Handling of Additional Special Element in GitHub repository squidex/squidex prior to 7.4.0. | 6.1 |