Known Vulnerabilities for products from Pagekit
Listed below are 10 of the newest known vulnerabilities associated with the vendor "Pagekit".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-6652 json | Not Provided | 2026-04-20 | 2026-04-20 | |
| CVE-2023-41005 json | An issue in Pagekit pagekit v.1.0.18 alows a remote attacker to execute arbitrary code via thedownloadAction and updateAction... | 7.8 - HIGH | 2023-08-28 | 2023-08-30 |
| CVE-2022-38916 json | A file upload vulnerability exists in the storage feature of pagekit 1.0.18, which allows an attacker to upload malicious fil... | 9.8 - CRITICAL | 2022-09-20 | 2022-09-21 |
| CVE-2022-36573 json | A cross-site scripting (XSS) vulnerability in Pagekit CMS v1.0.18 allows attackers to execute arbitrary web scripts or HTML v... | 6.1 - MEDIUM | 2022-08-29 | 2022-09-01 |
| CVE-2021-44135 json | pagekit all versions, as of 15-10-2021, is vulnerable to SQL Injection via Comment listing. | 9.8 - CRITICAL | 2022-04-01 | 2022-04-08 |
| CVE-2021-32245 json | In PageKit v1.0.18, a user can upload SVG files in the file upload portion of the CMS. These SVG files can contain malicious ... | 5.4 - MEDIUM | 2021-06-16 | 2021-06-23 |
| CVE-2019-19013 json | A CSRF vulnerability in Pagekit 1.0.17 allows an attacker to upload an arbitrary file by removing the CSRF token from a reque... | 8.8 - HIGH | 2019-11-22 | 2019-11-27 |
| CVE-2019-16669 json | The Reset Password feature in Pagekit 1.0.17 gives a different response depending on whether the e-mail address of a valid us... | 5.3 - MEDIUM | 2019-09-21 | 2019-09-23 |
| CVE-2018-14381 json | Pagekit before 1.0.14 has a /user/login?redirect= open redirect vulnerability. | 6.1 - MEDIUM | 2018-07-18 | 2018-09-14 |
| CVE-2018-11564 json | Stored XSS in YOOtheme Pagekit 1.0.13 and earlier allows a user to upload malicious code via the picture upload feature. A us... | 4.8 - MEDIUM | 2018-06-02 | 2018-07-05 |
| CVE-2017-5594 json | An issue was discovered in Pagekit CMS before 1.0.11. In this vulnerability the remote attacker is able to reset the register... | 7.5 - HIGH | 2017-01-25 | 2021-01-08 |
Known software with vulnerabilities from Pagekit
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Pagekit | Pagekit | 0.10.0 |