Vulnerabilities > Umbraco > Umbraco CMS > 14.1.1

DATE CVE VULNERABILITY TITLE RISK
2025-01-21 CVE-2025-24011 Information Exposure Through Discrepancy vulnerability in Umbraco CMS
Umbraco is a free and open source .NET content management system.
network
low complexity
umbraco CWE-203
5.3
5.3
2025-01-21 CVE-2025-24012 Cross-site Scripting vulnerability in Umbraco CMS
Umbraco is a free and open source .NET content management system.
network
low complexity
umbraco CWE-79
5.4
5.4
2024-10-22 CVE-2024-47819 Cross-site Scripting vulnerability in Umbraco CMS
Umbraco, a free and open source .NET content management system, has a cross-site scripting vulnerability starting in version 14.0.0 and prior to versions 14.3.1 and 15.0.0.
network
low complexity
umbraco CWE-79
8.7
8.7
2024-10-22 CVE-2024-48925 Incorrect Authorization vulnerability in Umbraco CMS
Umbraco, a free and open source .NET content management system, has an improper access control issue starting in version 14.0.0 and prior to version 14.3.0.
network
low complexity
umbraco CWE-863
6.5
6.5
2024-08-20 CVE-2024-43376 Information Exposure Through an Error Message vulnerability in Umbraco CMS 14.0.0/14.1.0/14.1.1
Umbraco is an ASP.NET CMS.
network
low complexity
umbraco CWE-209
5.3
5.3
2024-08-20 CVE-2024-43377 Unspecified vulnerability in Umbraco CMS 14.0.0/14.1.0/14.1.1
Umbraco CMS is an ASP.NET CMS.
network
low complexity
umbraco
4.3
4.3