Known Vulnerabilities for products from Publify Project
Listed below are 14 of the newest known vulnerabilities associated with the vendor "Publify Project".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2023-0569 json | Weak Password Requirements in GitHub repository publify/publify prior to 9.2.10. | 6.5 - MEDIUM | 2023-01-29 | 2023-02-06 |
| CVE-2023-0299 json | Improper Input Validation in GitHub repository publify/publify prior to 9.2.10. | 9.8 - CRITICAL | 2023-01-14 | 2023-01-23 |
| CVE-2022-2815 json | Insecure Storage of Sensitive Information in GitHub repository publify/publify prior to 9.2.10. | 6.5 - MEDIUM | 2023-01-14 | 2023-01-20 |
| CVE-2022-1812 json | Integer Overflow or Wraparound in GitHub repository publify/publify prior to 9.2.10. | 9.8 - CRITICAL | 2023-01-14 | 2023-01-23 |
| CVE-2022-1811 json | Unrestricted Upload of File with Dangerous Type in GitHub repository publify/publify prior to 9.2.9. | 5.4 - MEDIUM | 2022-05-23 | 2023-06-27 |
| CVE-2022-1810 json | Authorization Bypass Through User-Controlled Key in GitHub repository publify/publify prior to 9.2.9. | 4.3 - MEDIUM | 2022-05-23 | 2023-06-29 |
| CVE-2022-1553 json | Leaking password protected articles content due to improper access control in GitHub repository publify/publify prior to 9.2.... | 4.9 - MEDIUM | 2022-05-16 | 2022-05-25 |
| CVE-2022-0578 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 6.5 - MEDIUM | 2022-05-16 | 2023-07-21 |
| CVE-2022-0574 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 6.5 - MEDIUM | 2022-05-16 | 2022-05-24 |
| CVE-2022-0524 json | Business Logic Errors in GitHub repository publify/publify prior to 9.2.7. | 7.5 - HIGH | 2022-02-08 | 2022-02-11 |
| CVE-2021-25975 json | In publify, versions v8.0 to v9.2.4 are vulnerable to stored XSS as a result of an unrestricted file upload. This issue allow... | 5.4 - MEDIUM | 2021-11-10 | 2021-11-12 |
| CVE-2021-25974 json | In Publify, versions v8.0 to v9.2.4 are vulnerable to stored XSS. A user with a “publisher” role is able to inject and ex... | 5.4 - MEDIUM | 2021-11-10 | 2021-11-12 |
| CVE-2021-25973 json | In Publify, 9.0.0.pre1 to 9.2.4 are vulnerable to Improper Access Control. “guest” role users can self-register even when... | 6.5 - MEDIUM | 2021-11-02 | 2022-08-01 |
| CVE-2014-3211 json | Publify before 8.0.1 is vulnerable to a Denial of Service attack | 7.5 - HIGH | 2020-01-09 | 2020-01-13 |
Known software with vulnerabilities from Publify Project
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Publify Project | Publify | 1.6.7 |