Количество 2
Количество 2
CVE-2025-57756
Contao is an Open Source CMS. In versions starting from 4.9.14 and prior to 4.13.56, 5.3.38, and 5.6.1, protected content elements that are rendered as fragments are indexed and become publicly available in the front end search. This issue has been patched in versions 4.13.56, 5.3.38, and 5.6.1. A workaround involves disabling the front end search.
GHSA-2xmj-8wmq-7475
Contao discloses sensitive information in the front end search index
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2025-57756 Contao is an Open Source CMS. In versions starting from 4.9.14 and prior to 4.13.56, 5.3.38, and 5.6.1, protected content elements that are rendered as fragments are indexed and become publicly available in the front end search. This issue has been patched in versions 4.13.56, 5.3.38, and 5.6.1. A workaround involves disabling the front end search. | CVSS3: 5.3 | 0% Низкий | 5 месяцев назад |
| GHSA-2xmj-8wmq-7475 Contao discloses sensitive information in the front end search index | CVSS3: 5.3 | 0% Низкий | 5 месяцев назад |
Уязвимостей на страницу