Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
orchardproject orchard vulnerabilities and exploits
(subscribe to this query)
9
CVSSv3
CVE-2022-37720
Orchardproject Orchard CMS 1.10.3 is vulnerable to Cross Site Scripting (XSS). When a low privileged user such as an author or publisher, injects a crafted html and javascript payload in a blog post, leading to full admin account takeover or privilege escalation when the maliciou...
Orchardcore Orchard Cms 1.10.3
9.8
CVSSv3
CVE-2020-29592
An issue exists in Orchard prior to 1.10. A broken access control issue in Orchard components that use the TinyMCE HTML editor's file upload allows an malicious user to upload dangerous executables that bypass the file types allowed (regardless of the file types allowed list...
Orchardproject Orchard
5.4
CVSSv3
CVE-2020-29593
An issue exists in Orchard prior to 1.10. The Media Settings Allowed File Types list field allows an malicious user to add a XSS payload that will execute when users attempt to upload a disallowed file type, causing the error to display.
Orchardproject Orchard
NA
CVE-2015-5520
Cross-site scripting (XSS) vulnerability in the Users module in Orchard 1.7.3 up to and including 1.8.2 and 1.9.x prior to 1.9.1 allows remote malicious users to inject arbitrary web script or HTML via the username when creating a new user account, which is not properly handled w...
Orchardproject Orchard 1.7.3
Orchardproject Orchard 1.9
Orchardproject Orchard 1.8
Orchardproject Orchard 1.8.2
Orchardproject Orchard 1.8.1
1 EDB exploit
NA
CVE-2013-3645
Cross-site scripting (XSS) vulnerability in the Orchard.Comments module in Orchard prior to 1.6.1 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Orchardproject Orchard 1.41
Orchardproject Orchard 0.9
Orchardproject Orchard 1.42
Orchardproject Orchard 1.5.1
Orchardproject Orchard 1.4
Orchardproject Orchard
Orchardproject Orchard 0.1
Orchardproject Orchard 0.8
Orchardproject Orchard 1.2
Orchardproject Orchard 1.1
Orchardproject Orchard 1.5
Orchardproject Orchard 0.5
Orchardproject Orchard 1.3
Orchardproject Orchard 1.0
NA
CVE-2011-5252
Open redirect vulnerability in Users/Account/LogOff in Orchard 1.0.x prior to 1.0.21, 1.1.x prior to 1.1.31, 1.2.x prior to 1.2.42, and 1.3.x prior to 1.3.10 allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the Retur...
Orchardproject Orchard 1.0.20
Orchardproject Orchard 1.0
Orchardproject Orchard 1.1.30
Orchardproject Orchard 1.1
Orchardproject Orchard 1.2
Orchardproject Orchard 1.2.41
Orchardproject Orchard 1.3.10
Orchardproject Orchard 1.3
Orchardproject Orchard 1.3.9
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27802
template injection
CVE-2024-0044
code injection
CVE-2024-35474
CVE-2024-27857
CVE-2024-23251
CVE-2024-23692
physical
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started