Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
redaxo redaxo vulnerabilities and exploits
(subscribe to this query)
7.2
CVSSv3
CVE-2021-39459
Remote code execution in the modules component in Yakamara Media Redaxo CMS version 5.12.1 allows an authenticated CMS user to execute code on the hosting system via a module containing malicious PHP code.
Redaxo Redaxo 5.12.1
1 Github repository
7.2
CVSSv3
CVE-2024-25298
An issue exists in REDAXO version 5.15.1, allows malicious users to execute arbitrary code and obtain sensitive information via modules.modules.php.
Redaxo Redaxo 5.15.1
4.8
CVSSv3
CVE-2024-25300
A cross-site scripting (XSS) vulnerability in Redaxo v5.15.1 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter in the Template section.
Redaxo Redaxo 5.15.1
7.2
CVSSv3
CVE-2024-25301
Redaxo v5.15.1 exists to contain a remote code execution (RCE) vulnerability via the component /pages/templates.php.
Redaxo Redaxo 5.15.1
8.8
CVSSv3
CVE-2018-15850
An issue exists in REDAXO CMS 4.7.2. There is a CSRF vulnerability that can add an administrator account via index.php?page=user.
Redaxo Redaxo Cms 4.7.2
NA
CVE-2012-38691
Redaxo version 4.4 suffers from a cross site scripting vulnerability.
8.8
CVSSv3
CVE-2016-10757
In Redaxo 5.2.0, the cron management of the admin panel suffers from CSRF that leads to arbitrary Remote Code Execution via addons/cronjob/lib/types/phpcode.php.
Readaxo Readaxo 5.2.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2