CVE-2024-39311

Publify is a self hosted Web publishing platform on Rails. Prior to version 10.0.1 of Publify, corresponding to versions prior to 10.0.2 of the publifycore rubygem, publisher on a publify application is able to perform a cross-site scripting XSS attack on an administrator using the redirect...

CVE-2022-0524

Business Logic Errors in GitHub repository publify/publify prior to 9.2.7...

CVE-2022-0574

Improper Access Control in GitHub repository publify/publify prior to 9.2.8...

CVE-2022-0578

Code Injection in GitHub repository publify/publify prior to 9.2.8...

EUVD-2021-2410

Malware in sbrugna...

EUVD-2022-2187

Malicious code in bioql PyPI...

EUVD-2022-2964

Malicious code in bioql PyPI...

EUVD-2022-5520

Malicious code in bioql PyPI...

EUVD-2022-3472

Malicious code in bioql PyPI...

EUVD-2023-0526

Malicious code in bioql PyPI...

EUVD-2022-5402

Malicious code in bioql PyPI...

EUVD-2022-5598

Malicious code in bioql PyPI...

EUVD-2022-2196

Malicious code in bioql PyPI...

EUVD-2025-8631

Malicious code in bioql PyPI...

EUVD-2023-0543

Malicious code in bioql PyPI...

EUVD-2022-1245

Malicious code in bioql PyPI...

CVE-2023-0299

Improper Input Validation in GitHub repository publify/publify prior to 9.2.10...

CVE-2023-0569

Weak Password Requirements in GitHub repository publify/publify prior to 9.2.10...

CVE-2022-2815

Insecure Storage of Sensitive Information in GitHub repository publify/publify prior to 9.2.10...

CVE-2021-25973

In Publify, 9.0.0.pre1 to 9.2.4 are vulnerable to Improper Access Control. “guest” role users can self-register even when the admin does not allow. This happens due to front-end restriction only...