Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
OptimizelyOptimizely Cms*

4 matches found

CVE
CVEadded 2025/01/04 2:15 a.m.59 views

CVE-2025-22389

An issue was discovered in Optimizely EPiServer.CMS.Core before 12.32.0. A medium-severity vulnerability exists in the CMS, where the application does not properly validate uploaded files. This allows the upload of potentially malicious file types, including .docm .html. When accessed by applicatio...

8CVSS6.8AI score0.00084EPSS
CVE
CVEadded 2025/01/04 2:15 a.m.57 views

CVE-2025-22388

An issue was discovered in Optimizely EPiServer.CMS.Core before 12.22.0. A high-severity Stored Cross-Site Scripting (XSS) vulnerability exists in the CMS, allowing malicious actors to inject and execute arbitrary JavaScript code, potentially compromising user data, escalating privileges, or execut...

5.7CVSS5.5AI score0.00055EPSS
CVE
CVEadded 2025/01/04 2:15 a.m.55 views

CVE-2025-22390

An issue was discovered in Optimizely EPiServer.CMS.Core before 12.32.0. A medium-severity vulnerability exists in the CMS due to insufficient enforcement of password complexity requirements. The application permits users to set passwords with a minimum length of 6 characters, lacking adequate comp...

7.5CVSS6.6AI score0.00073EPSS
CVE
CVEadded 2023/11/14 4:15 a.m.18 views

CVE-2023-31754

Optimizely CMS UI before v12.16.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the Admin panel.

4.8CVSS5AI score0.00147EPSS