Known Vulnerabilities for Redaxo Cms by Redaxo
Listed below are 1 of the newest known vulnerabilities associated with "Redaxo Cms" by "Redaxo".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2018-25353 json | Redaxo CMS Mediapool Addon 5.5.1 and older contains an arbitrary file upload vulnerability that allows authenticated users to... | Not Provided | 2026-05-23 | 2026-05-26 |
| CVE-2018-25319 json | Redaxo CMS Addon MyEvents 2.2.1 contains an SQL injection vulnerability that allows authenticated attackers to manipulate dat... | Not Provided | 2026-05-17 | 2026-05-18 |
| CVE-2018-15850 json | An issue was discovered in REDAXO CMS 4.7.2. There is a CSRF vulnerability that can add an administrator account via index.ph... | 8.8 - HIGH | 2018-08-25 | 2018-10-17 |
| CVE-2016-20053 json | Redaxo CMS 5.2 contains a cross-site request forgery vulnerability that allows unauthenticated attackers to create administra... | 8.8 - HIGH | 2026-04-04 | 2026-04-06 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Redaxo | Redaxo Cms | 4.7.2 |