Known Vulnerabilities for products from Episerver
Listed below are 6 of the newest known vulnerabilities associated with the vendor "Episerver".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2020-24550 json | An Open Redirect vulnerability in EpiServer Find before 13.2.7 allows an attacker to redirect users to untrusted websites via... | 6.1 - MEDIUM | 2021-03-31 | 2021-04-05 |
| CVE-2018-12596 json | Episerver Ektron CMS before 9.0 SP3 Site CU 31, 9.1 before SP3 Site CU 45, or 9.2 before SP2 Site CU 22 allows remote attacke... | 9.8 - CRITICAL | 2018-10-10 | 2023-11-07 |
| CVE-2017-17762 json | XML external entity (XXE) vulnerability in Episerver 7 patch 4 and earlier allows remote attackers to read arbitrary files vi... | 7.5 - HIGH | 2018-08-29 | 2018-11-08 |
| CVE-2012-1034 json | Multiple cross-site scripting (XSS) vulnerabilities in the admin interface in EPiServer CMS through 6R2 allow remote attacker... | Not Provided | 2012-02-08 | 2026-04-29 |
| CVE-2012-1032 json | Cross-site scripting (XSS) vulnerability in the Euroling SiteSeeker module 3.x before 3.4.5 for EPiServer allows remote attac... | 4.3 - MEDIUM | 2014-09-17 | 2017-08-29 |
| CVE-2012-1031 json | Unspecified vulnerability in EPiServer CMS 5 and 6 through 6R2, in certain configurations using Forms Authentication, allows ... | Not Provided | 2012-02-08 | 2026-04-29 |
Known software with vulnerabilities from Episerver
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Episerver | Ektron Cms | 4.5 |
| Application | Episerver | Episerver | 7 |