Known Vulnerabilities for products from Ektron
Listed below are 12 of the newest known vulnerabilities associated with the vendor "Ektron".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2016-6201 json | Cross-site scripting (XSS) vulnerability in Ektron Content Management System (CMS) before 9.1.0.184 SP3 (9.1.0.184.3.127) all... | Not Provided | 2017-07-03 | 2025-04-20 |
| CVE-2016-6133 json | Cross-site scripting (XSS) vulnerability in Ektron Content Management System before 9.1.0.184SP3(9.1.0.184.3.127) allows remo... | Not Provided | 2017-07-25 | 2025-04-20 |
| CVE-2015-4427 json | Multiple cross-site scripting (XSS) vulnerabilities in Test/WorkArea/workarea.aspx in Ektron Content Management System (CMS) ... | Not Provided | 2015-06-09 | 2026-05-06 |
| CVE-2015-3624 json | Cross-site request forgery (CSRF) vulnerability in Test/WorkArea/DmsMenu/menuActions/MenuActions.aspx in Ektron Content Manag... | Not Provided | 2015-06-09 | 2026-05-06 |
| CVE-2015-0931 json | Ektron Content Management System (CMS) 8.5 and 8.7 before 8.7sp2 and 9.0 before sp1, when the Saxon XSLT parser is used, allo... | Not Provided | 2015-02-14 | 2026-05-06 |
| CVE-2015-0923 json | The ContentBlockEx method in Workarea/ServerControlWS.asmx in Ektron Content Management System (CMS) 8.5 and 8.7 before 8.7sp... | Not Provided | 2015-02-14 | 2026-05-06 |
| CVE-2014-2729 json | Cross-site scripting (XSS) vulnerability in content.aspx in Ektron CMS 8.7 before 8.7.0.055 allows remote authenticated users... | Not Provided | 2014-04-25 | 2026-05-06 |
| CVE-2012-5358 json | The XSLTCompiledTransform function in Ektron Content Management System (CMS) before 8.02 SP5 configures the XSL with enableDo... | Not Provided | 2017-10-30 | 2025-04-20 |
| CVE-2012-5357 json | Ektron Content Management System (CMS) before 8.02 SP5 uses the XslCompiledTransform class with enablescript set to true, whi... | Not Provided | 2017-10-30 | 2025-04-20 |
| CVE-2009-4473 json | Multiple cross-site scripting (XSS) vulnerabilities in WorkArea/ContentDesigner/ekformsiframe.aspx in Ektron CMS400.NET 7.6.1... | Not Provided | 2009-12-30 | 2026-04-23 |
| CVE-2008-5122 json | SQL injection vulnerability in WorkArea/ContentRatingGraph.aspx in Ektron CMS400.NET 7.5.2 and earlier allows remote attacker... | Not Provided | 2008-11-18 | 2026-04-23 |
| CVE-2008-3499 json | Unspecified vulnerability in "a page in the workarea folder" in Ektron CMS400.NET 7.00 through 7.04 and 7.50 through 7.52 has... | Not Provided | 2008-08-06 | 2026-04-23 |
Known software with vulnerabilities from Ektron
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Ektron | Ektron Content Management System | 8.5.0 |