Vulnerabilities > Umbraco > Critical

DATE CVE VULNERABILITY TITLE RISK
2023-07-13 CVE-2023-37267 Unspecified vulnerability in Umbraco CMS
Umbraco is a ASP.NET CMS.
network
low complexity
umbraco
critical
9.8
2023-02-24 CVE-2021-33224 Unrestricted Upload of File with Dangerous Type vulnerability in Umbraco Forms 8.7.0
File upload vulnerability in Umbraco Forms v.8.7.0 allows unauthenticated attackers to execute arbitrary code via a crafted web.config and asp file.
network
low complexity
umbraco CWE-434
critical
9.8
2021-08-25 CVE-2021-37334 Unspecified vulnerability in Umbraco Forms
Umbraco Forms version 4.0.0 up to and including 8.7.5 and below are vulnerable to a security flaw that could lead to a remote code execution attack and/or arbitrary file deletion.
network
umbraco
critical
9.3