Vulnerabilities > Xpressengine > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-02-07 | CVE-2011-10003 | Unspecified vulnerability in Xpressengine A vulnerability was found in XpressEngine up to 1.4.4. | 9.8 |
| 2023-01-20 | CVE-2021-26642 | Unrestricted Upload of File with Dangerous Type vulnerability in Xpressengine When uploading an image file to a bulletin board developed with XpressEngine, a vulnerability in which an arbitrary file can be uploaded due to insufficient verification of the file. | 9.8 |