Количество 2
Количество 2
CVE-2025-57757
Contao is an Open Source CMS. In versions starting from 5.0.0 and prior to 5.3.38 and 5.6.1, if a news feed contains protected news archives, their news items are not filtered and become publicly available in the RSS feed. This issue has been patched in versions 5.3.38 and 5.6.1. A workaround involves not adding protected news archives to the news feed page.
GHSA-w53m-gxvg-vx7p
Contao can disclose sensitive information in the news module
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2025-57757 Contao is an Open Source CMS. In versions starting from 5.0.0 and prior to 5.3.38 and 5.6.1, if a news feed contains protected news archives, their news items are not filtered and become publicly available in the RSS feed. This issue has been patched in versions 5.3.38 and 5.6.1. A workaround involves not adding protected news archives to the news feed page. | CVSS3: 5.3 | 0% Низкий | 5 месяцев назад |
| GHSA-w53m-gxvg-vx7p Contao can disclose sensitive information in the news module | CVSS3: 5.3 | 0% Низкий | 5 месяцев назад |
Уязвимостей на страницу