cbcvebase.

Publify Publify vulnerabilities

10 known vulnerabilities affecting publify/publify_publify.

Total CVEs
10
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL2HIGH1MEDIUM7

Vulnerabilities

Page 1 of 1
CVE-2022-1812P2CRITICALCVSS 9.8≥ unspecified, < 9.2.102023-01-14
CVE-2022-1812 [CRITICAL] CWE-190 CVE-2022-1812: Integer Overflow or Wraparound in GitHub repository publify/publify prior to 9.2.10. Integer Overflow or Wraparound in GitHub repository publify/publify prior to 9.2.10.
nvd
CVE-2023-0299P3CRITICALCVSS 9.8≥ unspecified, < 9.2.102023-01-14
CVE-2023-0299 [CRITICAL] CWE-20 CVE-2023-0299: Improper Input Validation in GitHub repository publify/publify prior to 9.2.10. Improper Input Validation in GitHub repository publify/publify prior to 9.2.10.
nvd
CVE-2022-0524P3HIGHCVSS 7.5≥ unspecified, < 9.2.72022-02-08
CVE-2022-0524 [HIGH] CWE-840 CVE-2022-0524: Business Logic Errors in GitHub repository publify/publify prior to 9.2.7. Business Logic Errors in GitHub repository publify/publify prior to 9.2.7.
nvd
CVE-2022-0578P4MEDIUMCVSS 6.5≥ unspecified, < 9.2.82022-05-16
CVE-2022-0578 [MEDIUM] CWE-94 CVE-2022-0578: Code Injection in GitHub repository publify/publify prior to 9.2.8. Code Injection in GitHub repository publify/publify prior to 9.2.8.
nvd
CVE-2022-0574P4MEDIUMCVSS 6.5≥ unspecified, < 9.2.82022-05-16
CVE-2022-0574 [MEDIUM] CWE-284 CVE-2022-0574: Improper Access Control in GitHub repository publify/publify prior to 9.2.8. Improper Access Control in GitHub repository publify/publify prior to 9.2.8.
nvd
CVE-2023-0569P4MEDIUMCVSS 6.5≥ unspecified, < 9.2.102023-01-29
CVE-2023-0569 [MEDIUM] CWE-521 CVE-2023-0569: Weak Password Requirements in GitHub repository publify/publify prior to 9.2.10. Weak Password Requirements in GitHub repository publify/publify prior to 9.2.10.
nvd
CVE-2022-2815P4MEDIUMCVSS 6.5≥ unspecified, < 9.2.102023-01-14
CVE-2022-2815 [MEDIUM] CWE-922 CVE-2022-2815: Insecure Storage of Sensitive Information in GitHub repository publify/publify prior to 9.2.10. Insecure Storage of Sensitive Information in GitHub repository publify/publify prior to 9.2.10.
nvd
CVE-2022-1811P4MEDIUMCVSS 5.4≥ unspecified, < 9.2.92022-05-23
CVE-2022-1811 [MEDIUM] CWE-434 CVE-2022-1811: Unrestricted Upload of File with Dangerous Type in GitHub repository publify/publify prior to 9.2.9. Unrestricted Upload of File with Dangerous Type in GitHub repository publify/publify prior to 9.2.9.
nvd
CVE-2022-1553P4MEDIUMCVSS 4.9≥ unspecified, < 9.2.82022-05-16
CVE-2022-1553 [MEDIUM] CWE-284 CVE-2022-1553: Leaking password protected articles content due to improper access control in GitHub repository publ Leaking password protected articles content due to improper access control in GitHub repository publify/publify prior to 9.2.8. Attackers can leverage this vulnerability to view the contents of any password-protected article present on the publify website, compromising confidentiality and integrity of users.
nvd
CVE-2022-1810P4MEDIUMCVSS 4.3≥ unspecified, < 9.2.92022-05-23
CVE-2022-1810 [MEDIUM] CWE-639 CVE-2022-1810: Authorization Bypass Through User-Controlled Key in GitHub repository publify/publify prior to 9.2.9 Authorization Bypass Through User-Controlled Key in GitHub repository publify/publify prior to 9.2.9.
nvd
Publify Publify vulnerabilities | cvebase