Wintercms Winter vulnerabilities
9 known vulnerabilities affecting wintercms/winter.
Total CVEs
9
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
CRITICAL2HIGH2MEDIUM4LOW1
Vulnerabilities
Page 1 of 1
CVE-2023-52085P3MEDIUMCVSS 5.4PoCfixed in 1.2.42023-12-29
CVE-2023-52085 [MEDIUM] CWE-22 CVE-2023-52085: Winter is a free, open-source content management system. Users with access to backend forms that inc
Winter is a free, open-source content management system. Users with access to backend forms that include a ColorPicker FormWidget can provide a value that would then be included without further processing in the compilation of custom stylesheets via LESS. This had the potential to lead to a Local File Inclusion vulnerability. This issue has been patc
nvd
CVE-2026-27591P2CRITICALCVSS 9.9fixed in 1.0.477≥ 1.1.0, < 1.1.12+3 more2026-03-11
CVE-2026-27591 [CRITICAL] CWE-284 CVE-2026-27591: Winter is a free, open-source content management system (CMS) based on the Laravel PHP framework. Pr
Winter is a free, open-source content management system (CMS) based on the Laravel PHP framework. Prior to 1.0.477, 1.1.12, and 1.2.12, Winter CMS allowed authenticated backend users to escalate their accounts level of access to the system by modifying the roles / permissions assigned to their account through specially crafted requests to the back
nvd
CVE-2022-39357P3CRITICALCVSS 9.8v1.1.8v1.1.9+3 more2022-10-26
CVE-2022-39357 [CRITICAL] CWE-1321 CVE-2022-39357: Winter is a free, open-source content management system based on the Laravel PHP framework. The Snow
Winter is a free, open-source content management system based on the Laravel PHP framework. The Snowboard framework in versions 1.1.8, 1.1.9, and 1.2.0 is vulnerable to prototype pollution in the main Snowboard class as well as its plugin loader. The 1.0 branch of Winter is not affected, as it does not contain the Snowboard framework. This issue
ghsanvdosv
CVE-2024-29686P3HIGHCVSS 7.2v1.2.32024-03-29
CVE-2024-29686 [HIGH] CWE-97 CVE-2024-29686: Server-side Template Injection (SSTI) vulnerability in Winter CMS v.1.2.3 allows a remote attacker t
Server-side Template Injection (SSTI) vulnerability in Winter CMS v.1.2.3 allows a remote attacker to execute arbitrary code via a crafted payload to the CMS Pages field and Plugin components. NOTE: the vendor disputes this because the payload could only be entered by a trusted user, such as the owner of the server that hosts Winter CMS, or a developer
ghsanvdosv
CVE-2023-37269P4MEDIUMCVSS 4.8PoCfixed in 1.2.32023-07-07
CVE-2023-37269 [MEDIUM] CWE-79 CVE-2023-37269: Winter is a free, open-source content management system (CMS) based on the Laravel PHP framework. Us
Winter is a free, open-source content management system (CMS) based on the Laravel PHP framework. Users with the `backend.manage_branding` permission can upload SVGs as the application logo. Prior to version 1.2.3, SVG uploads were not sanitized, which could have allowed a stored cross-site scripting (XSS) attack. To exploit the vulnerability, an att
ghsanvdosv
CVE-2024-54149P3HIGHCVSS 8.4fixed in 1.0.476≥ 1.1.0, < 1.1.11+3 more2024-12-09
CVE-2024-54149 [HIGH] CWE-184 CVE-2024-54149: Winter is a free, open-source content management system (CMS) based on the Laravel PHP framework. Wi
Winter is a free, open-source content management system (CMS) based on the Laravel PHP framework. Winter CMS prior to versions 1.2.7, 1.1.11, and 1.0.476 allow users with access to the CMS templates sections that modify Twig files to bypass the sandbox placed on Twig files and modify resources such as theme customisation values or modify, or remove, t
nvd
CVE-2023-52084P4MEDIUMCVSS 5.4fixed in 1.2.42023-12-28
CVE-2023-52084 [MEDIUM] CWE-79 CVE-2023-52084: Winter is a free, open-source content management system. Prior to 1.2.4, Users with access to backen
Winter is a free, open-source content management system. Prior to 1.2.4, Users with access to backend forms that include a ColorPicker FormWidget can provide a value that would then be rendered unescaped in the backend form, potentially allowing for a stored XSS attack. This issue has been patched in v1.2.4.
nvd
CVE-2023-52083P4MEDIUMCVSS 4.8fixed in 1.2.42023-12-28
CVE-2023-52083 [MEDIUM] CWE-79 CVE-2023-52083: Winter is a free, open-source content management system. Prior to 1.2.4, users with the `media.mana
Winter is a free, open-source content management system. Prior to 1.2.4, users with the `media.manage_media` permission can upload files to the Media Manager and rename them after uploading. Previously, media manager files were only sanitized on upload, not on renaming, which could have allowed a stored XSS attack. This issue has been patched in v1.2.
nvd
CVE-2026-22254P4LOWCVSS 3.5fixed in 1.2.102026-02-06
CVE-2026-22254 [LOW] CWE-79 CVE-2026-22254: Winter is a free, open-source content management system (CMS) based on the Laravel PHP framework. Ve
Winter is a free, open-source content management system (CMS) based on the Laravel PHP framework. Versions of Winter CMS before 1.2.10 allow users with access to the CMS Asset Manager were able to upload SVGs without automatic sanitization. To actively exploit this security issue, an attacker would need access to the Backend with a user account with the
nvd