Lucene search
K

8 matches found

CVE
CVE
added 2020/12/30 6:47 p.m.198 views

CVE-2020-28925

Bolt CMS prior to 3.7.2 does not restrict filter options in a Request when rendered in Twig context, per CVE-2020-28925. Root cause: unrestricted filter parameters in Twig requests. Impact stated in sources is primarily that this is inconsistent with securing PHP guidance; no exploitation details...

5.3CVSS5.5AI score0.01085EPSS
CVE
CVE
added 2021/02/17 8:47 p.m.198 views

CVE-2021-27367

Bolt CMS prior to version 4.1.13 contains a directory traversal vulnerability in Controller/Backend/FileEditController.php and Controller/Backend/FilemanagerController.php (CVE-2021-27367). The issue allows an attacker to traverse directories, potentially exposing sensitive files. The connected R...

7.5CVSS7.4AI score0.01747EPSS
CVE
CVE
added 2019/08/23 12:30 p.m.190 views

CVE-2019-15485

CVE-2019-15485: Bolt before 3.6.10 is vulnerable to cross-site scripting via createFolder or createFile in Controller/Async/FilesystemManager.php. The issue affects Bolt CMS versions prior to 3.6.10 and is exploitable through crafted input in file/folder creation paths, as documented in multiple ...

6.1CVSS6AI score0.00861EPSS
CVE
CVE
added 2020/06/08 10:0 p.m.188 views

CVE-2020-4040

Bolt CMS before version 3.7.1 lacked CSRF protection in the preview generating endpoint. Unauthorized users could generate previews intended for admins, editors, or similar roles. This was fixed in Bolt 3.7.1; affected versions are prior to that release.

8.6CVSS4.8AI score0.01766EPSS
Web
CVE
CVE
added 2020/06/08 10:5 p.m.182 views

CVE-2020-4041

CVE-2020-4041 (Bolt CMS) affects Bolt CMS versions before 3.7.1. The vulnerability concerns the filename of uploaded files, which is stored in a way that allows stored XSS after the file is created/uploaded. Although initial file names cannot inject JavaScript, renaming the file post-upload can i...

7.4CVSS6.1AI score0.02026EPSS
Web
CVE
CVE
added 2019/03/07 10:0 p.m.160 views

CVE-2019-9185

Bolt CMS prior to 3.6.5 is affected by a vulnerability in the filemanager’s Controller/Async/FilesystemManager.php that allows remote code execution by renaming a previously uploaded file to have a .php extension. Public references indicate the fix was released in Bolt 3.6.5 (see Bolt v3.6.5 rele...

8.8CVSS8.9AI score0.02661EPSS
CVE
CVE
added 2019/08/23 12:30 p.m.159 views

CVE-2019-15484

CVE-2019-15484 affects Bolt before 3.6.10 with an XSS via an image’s alt or title field. The root cause is tied to unsanitized image metadata in Bolt’s handling/rendering path. The connected documents note a fix in Bolt 3.6.10 (release/tag 3.6.10). Exploitation details are not provided in the sup...

6.1CVSS6AI score0.00861EPSS
CVE
CVE
added 2019/08/23 12:29 p.m.155 views

CVE-2019-15483

CVE-2019-15483 affects Bolt CMS (Bolt) prior to version 3.6.10. The vulnerability is a cross-site scripting (XSS) flaw caused by mishandling a title in the system log, enabling an attacker to inject and execute client-side code under certain log-processing conditions. The issue is addressed in Bo...

6.1CVSS5.9AI score0.00861EPSS