Количество 2
Количество 2
CVE-2025-29790
11 месяцев назад
Contao is an Open Source CMS. Users can upload SVG files with malicious code, which is then executed in the back end and/or front end. This vulnerability is fixed in Contao 4.13.54, 5.3.30, or 5.5.6.
CVSS3: 5.4
EPSS: Низкий
GHSA-vqqr-fgmh-f626
11 месяцев назад
Contao Vulnerable to Cross-Site Scripting (XSS) through SVG uploads
EPSS: Низкий
Уязвимостей на страницу
20
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2025-29790 Contao is an Open Source CMS. Users can upload SVG files with malicious code, which is then executed in the back end and/or front end. This vulnerability is fixed in Contao 4.13.54, 5.3.30, or 5.5.6. | CVSS3: 5.4 | 0% Низкий | 11 месяцев назад |
| GHSA-vqqr-fgmh-f626 Contao Vulnerable to Cross-Site Scripting (XSS) through SVG uploads | 0% Низкий | 11 месяцев назад |
Уязвимостей на страницу
20