Vulnerabilities > Squidex IO

DATE CVE VULNERABILITY TITLE RISK
2023-12-07 CVE-2023-46857 Cross-site Scripting vulnerability in Squidex.Io Squidex
Squidex before 7.9.0 allows XSS via an SVG document to the Upload Assets feature.
network
low complexity
squidex-io CWE-79
5.4
2023-11-07 CVE-2023-46252 Cross-site Scripting vulnerability in Squidex.Io Squidex 7.8.2
Squidex is an open source headless CMS and content management hub.
network
low complexity
squidex-io CWE-79
6.1
2023-11-07 CVE-2023-46253 Path Traversal vulnerability in Squidex.Io Squidex 7.8.2
Squidex is an open source headless CMS and content management hub.
network
low complexity
squidex-io CWE-22
7.2
2023-11-07 CVE-2023-46744 Cross-site Scripting vulnerability in Squidex.Io Squidex
Squidex is an open source headless CMS and content management hub.
network
low complexity
squidex-io CWE-79
5.4
2023-07-10 CVE-2023-3580 Unspecified vulnerability in Squidex.Io Squidex
Improper Handling of Additional Special Element in GitHub repository squidex/squidex prior to 7.4.0.
network
low complexity
squidex-io
4.3
2023-03-18 CVE-2023-24278 Cross-site Scripting vulnerability in Squidex.Io Squidex
Squidex before 7.4.0 was discovered to contain a squid.svg cross-site scripting (XSS) vulnerability.
network
low complexity
squidex-io CWE-79
6.1
2023-02-02 CVE-2023-0642 Cross-Site Request Forgery (CSRF) vulnerability in Squidex.Io Squidex
Cross-Site Request Forgery (CSRF) in GitHub repository squidex/squidex prior to 7.4.0.
network
low complexity
squidex-io CWE-352
6.5
2023-02-02 CVE-2023-0643 Improper Handling of Additional Special Element vulnerability in Squidex.Io Squidex
Improper Handling of Additional Special Element in GitHub repository squidex/squidex prior to 7.4.0.
network
low complexity
squidex-io CWE-167
6.1