PortlandLabs Concrete CMS 安全漏洞

PortlandLabs Concrete CMS is an open source content management system for teams from PortlandLabs, Inc. in the United States. A security vulnerability exists in Concrete CMS prior to 9.2.8, versions prior to 8.5.16, which stems from user input being output without escaping, and an attacker may be...

Publify 安全漏洞

Publify is a simple but full-featured web publishing software.A code injection vulnerability exists in versions of Publify prior to 9.2.8, which stems from the existence of a code injection vulnerability, for which no detailed vulnerability details are currently available...

Publify 安全漏洞

Publify is a simple but full-featured web publishing software.An access control error vulnerability exists in versions of Publify prior to 9.2.8. The vulnerability stems from an access control error in draft mode, which could be exploited by an attacker to comment on articles in draft mode...

PT-2022-13274 · Publify · Publify

Name of the Vulnerable Software and Affected Versions: publify/publify versions prior to 9.2.8 Description: The issue is related to code injection in the GitHub repository publify/publify. Recommendations: For versions prior to 9.2.8, update to version 9.2.8 or later to resolve the issue...