Vulnerabilities > Umbraco > Umbraco CMS > 8.6.5
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-10-22 | CVE-2024-48926 | Insufficient Session Expiration vulnerability in Umbraco CMS Umbraco, a free and open source .NET content management system, has an insufficient session expiration issue in versions on the 13.x branch prior to 13.5.2, 10.x prior to 10.8.7, and 8.x prior to 8.18.15. | 3.1 |
| 2024-10-22 | CVE-2024-48927 | Cross-site Scripting vulnerability in Umbraco CMS Umbraco, a free and open source .NET content management system, has a remote code execution issue in versions on the 13.x branch prior to 13.5.2, 10.x prior to 10.8.7, and 8.x prior to 8.18.15. | 4.6 |
| 2024-05-21 | CVE-2024-35218 | Cross-site Scripting vulnerability in Umbraco CMS Umbraco CMS is an ASP.NET CMS used by more than 730.000 websites. | 4.8 |
| 2023-12-12 | CVE-2023-49274 | Unspecified vulnerability in Umbraco CMS Umbraco is an ASP.NET content management system (CMS). | 5.3 |
| 2023-12-12 | CVE-2023-49278 | Unspecified vulnerability in Umbraco CMS Umbraco is an ASP.NET content management system (CMS). | 5.3 |
| 2023-12-12 | CVE-2023-49279 | Unspecified vulnerability in Umbraco CMS Umbraco is an ASP.NET content management system (CMS). | 5.4 |
| 2023-12-12 | CVE-2023-49089 | Path Traversal vulnerability in Umbraco CMS Umbraco is an ASP.NET content management system (CMS). | 6.5 |
| 2023-12-12 | CVE-2023-49273 | Unspecified vulnerability in Umbraco CMS Umbraco is an ASP.NET content management system (CMS). | 5.4 |
| 2023-12-12 | CVE-2023-38694 | Unspecified vulnerability in Umbraco CMS Umbraco is an ASP.NET content management system (CMS). | 5.4 |
| 2023-12-12 | CVE-2023-48227 | Unspecified vulnerability in Umbraco CMS Umbraco is an ASP.NET content management system (CMS). | 4.3 |