Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
boltcms bolt vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2019-15483
Bolt prior to 3.6.10 has XSS via a title that is mishandled in the system log.
Boltcms Bolt
383
VMScore
CVE-2019-15484
Bolt prior to 3.6.10 has XSS via an image's alt or title field.
Boltcms Bolt
383
VMScore
CVE-2019-15485
Bolt prior to 3.6.10 has XSS via createFolder or createFile in Controller/Async/FilesystemManager.php.
Boltcms Bolt
445
VMScore
CVE-2017-16754
Bolt prior to 3.3.6 does not properly restrict access to _profiler routes, related to EventListener/ProfilerListener.php and Provider/EventListenerServiceProvider.php.
Boltcms Bolt
NA
CVE-2022-31321
The foldername parameter in Bolt 5.1.7 exists to have incorrect input validation, allowing malicious users to perform directory enumeration or cause a Denial of Service (DoS) via a crafted input.
Boltcms Bolt
445
VMScore
CVE-2020-28925
Bolt prior to 3.7.2 does not restrict filter options in a Request in the Twig context, and is therefore inconsistent with the "How to Harden Your PHP for Better Security" guidance.
Boltcms Bolt
655
VMScore
CVE-2015-7309
The theme editor in Bolt prior to 2.2.5 does not check the file extension when renaming files, which allows remote authenticated users to execute arbitrary code by renaming a crafted file and then directly accessing it.
Boltcms Bolt
1 EDB exploit
384
VMScore
CVE-2020-4040
Bolt CMS before version 3.7.1 lacked CSRF protection in the preview generating endpoint. Previews are intended to be generated by the admins, developers, chief-editors, and editors, who are authorized to create content in the application. But due to lack of proper CSRF protection...
Boltcms Bolt
383
VMScore
CVE-2020-4041
In Bolt CMS before version 3.7.1, the filename of uploaded files was vulnerable to stored XSS. It is not possible to inject javascript code in the file name when creating/uploading the file. But, once created/uploaded, it can be renamed to inject the payload in it. Additionally, ...
Boltcms Bolt
445
VMScore
CVE-2021-27367
Controller/Backend/FileEditController.php and Controller/Backend/FilemanagerController.php in Bolt prior to 4.1.13 allow Directory Traversal.
Boltcms Bolt
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
administrator privileges
CVE-2024-1579
hardcoded
CVE-2023-20198
CVE-2024-33587
CVE-2024-33449
CVE-2024-4308
HTML injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »