Known Vulnerabilities for October by Octobercms
Listed below are 10 of the newest known vulnerabilities associated with "October" by "Octobercms".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-25133 json | October is a Content Management System (CMS) and web platform. Versions prior to 3.7.14 and 4.1.10 contain a stored cross-sit... | Not Provided | 2026-04-14 | 2026-04-14 |
| CVE-2026-25125 json | October is a Content Management System (CMS) and web platform. Versions prior to 3.7.14 and 4.1.10 contain a server-side info... | Not Provided | 2026-04-14 | 2026-04-14 |
| CVE-2026-24907 json | October is a Content Management System (CMS) and web platform. Versions prior to 3.7.14 and 4.1.10 contain a stored cross-sit... | Not Provided | 2026-04-14 | 2026-04-14 |
| CVE-2026-24906 json | October is a Content Management System (CMS) and web platform. Versions prior to 3.7.14 and 4.1.10 contain a Stored Cross-Sit... | Not Provided | 2026-04-14 | 2026-04-14 |
| CVE-2026-22692 json | October is a Content Management System (CMS) and web platform. Versions prior to 3.7.13 and versions 4.0.0 through 4.1.4 cont... | Not Provided | 2026-04-14 | 2026-04-14 |
| CVE-2023-44383 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 5.4 - MEDIUM | 2023-11-29 | 2023-12-05 |
| CVE-2023-44382 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 9.1 - CRITICAL | 2023-12-01 | 2023-12-06 |
| CVE-2023-44381 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 4.9 - MEDIUM | 2023-12-01 | 2023-12-06 |
| CVE-2023-43876 json | A Cross-Site Scripting (XSS) vulnerability in installation of October v.3.4.16 allows an attacker to execute arbitrary web sc... | 5.4 - MEDIUM | 2023-09-28 | 2023-09-29 |
| CVE-2023-37692 json | An arbitrary file upload vulnerability in October CMS v3.4.4 allows attackers to execute arbitrary code via a crafted file. | 5.4 - MEDIUM | 2023-07-26 | 2023-08-02 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Octobercms | October | 1.1.0 | |||
| Application | Octobercms | October | 1.0.99 | |||
| Application | Octobercms | October | 1.0.98 | |||
| Application | Octobercms | October | 1.0.97 | |||
| Application | Octobercms | October | 1.0.96 | |||
| Application | Octobercms | October | 1.0.95 | |||
| Application | Octobercms | October | 1.0.94 | |||
| Application | Octobercms | October | 1.0.93 | |||
| Application | Octobercms | October | 1.0.92 | |||
| Application | Octobercms | October | 1.0.91 | |||
| Application | Octobercms | October | 1.0.90 | |||
| Application | Octobercms | October | 1.0.89 | |||
| Application | Octobercms | October | 1.0.88 | |||
| Application | Octobercms | October | 1.0.87 | |||
| Application | Octobercms | October | 1.0.86 | |||
| Application | Octobercms | October | 1.0.85 | |||
| Application | Octobercms | October | 1.0.84 | |||
| Application | Octobercms | October | 1.0.83 | |||
| Application | Octobercms | October | 1.0.82 | |||
| Application | Octobercms | October | 1.0.81 |