Known Vulnerabilities for Homepage by Homepage Project
Listed below are 1 of the newest known vulnerabilities associated with "Homepage" by "Homepage Project".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-35208 json | lichess.org is the forever free, adless and open source chess server. Any approved streamer can inject arbitrary HTML into /s... | Not Provided | 2026-04-06 | 2026-04-07 |
| CVE-2026-4166 json | A vulnerability was found in Wavlink WL-NU516U1 240425. The impacted element is the function sub_404F68 of the file /cgi-bin/... | Not Provided | 2026-03-16 | 2026-03-17 |
| CVE-2025-49453 json | Cross-Site Request Forgery (CSRF) vulnerability in Jatinder Pal Singh BP Profile as Homepage bp-profile-as-homepage allows St... | Not Provided | 2025-06-06 | 2026-04-01 |
| CVE-2024-4034 json | The Virtue theme for WordPress is vulnerable to Stored Cross-Site Scripting via a Post Author's name in all versions up to, a... | Not Provided | 2024-05-02 | 2026-04-08 |
| CVE-2024-1771 json | The Total theme for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the tot... | Not Provided | 2024-03-06 | 2026-04-08 |
| CVE-2022-31548 json | The nrlakin/homepage repository through 2017-03-06 on GitHub allows absolute path traversal because the Flask send_file funct... | 9.3 - CRITICAL | 2022-07-11 | 2022-07-15 |