Known Vulnerabilities for products from Backdropcms
Listed below are 10 of the newest known vulnerabilities associated with the vendor "Backdropcms".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2022-24590 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 5.4 - MEDIUM | 2022-02-15 | 2022-02-22 |
| CVE-2019-19903 | An issue was discovered in Backdrop CMS 1.14.x before 1.14.2. It doesn't sufficiently filter output when displaying file type... | 4.8 - MEDIUM | 2019-12-19 | 2019-12-27 |
| CVE-2019-19902 | An issue was discovered in Backdrop CMS 1.13.x before 1.13.5 and 1.14.x before 1.14.2. It allows the upload of entire-site co... | 7.2 - HIGH | 2019-12-19 | 2021-07-21 |
| CVE-2019-19901 | An issue was discovered in Backdrop CMS 1.13.x before 1.13.5 and 1.14.x before 1.14.2. It doesn't sufficiently filter output ... | 4.8 - MEDIUM | 2019-12-19 | 2019-12-27 |
| CVE-2019-19900 | An issue was discovered in Backdrop CMS 1.13.x before 1.13.5 and 1.14.x before 1.14.2. It doesn't sufficiently filter output ... | 4.8 - MEDIUM | 2019-12-19 | 2019-12-27 |
| CVE-2019-14771 | Backdrop CMS 1.12.x before 1.12.8 and 1.13.x before 1.13.3 allows the upload of entire-site configuration archives through th... | 9.8 - CRITICAL | 2019-08-08 | 2019-08-19 |
| CVE-2019-14770 | In Backdrop CMS 1.12.x before 1.12.8 and 1.13.x before 1.13.3, some menu links within the administration bar may be crafted t... | 6.1 - MEDIUM | 2019-08-08 | 2019-08-16 |
| CVE-2019-14769 | Backdrop CMS 1.12.x before 1.12.8 and 1.13.x before 1.13.3 doesn't sufficiently filter output when displaying certain block l... | 6.1 - MEDIUM | 2019-08-08 | 2019-08-15 |
| CVE-2019-11358 | jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of ... | 6.1 - MEDIUM | 2019-04-20 | 2023-11-07 |
| CVE-2018-1000813 | Backdrop CMS version 1.11.0 and earlier contains a Cross Site Scripting (XSS) vulnerability in Sanitization of custom class n... | 4.8 - MEDIUM | 2018-12-20 | 2019-01-06 |
Known software with vulnerabilities from Backdropcms
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Backdropcms | Backdrop | 1.0.0 |
| Application | Backdropcms | Backdrop Cms | 1.0.0 |