automad/automad Security Advisories (4)
-
[HIGH] Automad arbitrary file upload vulnerability
PKSA-r1d3-g8t1-txjr CVE-2024-40400 GHSA-47mc-qmh2-mqj4
Affected version: <2.0.0-alpha.5
Reported by:
GitHub -
[LOW] Authenticated Blind SSRF in automad/automad
PKSA-s7vb-651v-z4vk CVE-2023-7037 GHSA-q5q3-qm26-9jwm
Affected version: <=1.10.9
Reported by:
GitHub -
[MEDIUM] Cross-Site Request Forgery (CSRF) in automad/automad
PKSA-9bhq-j3vm-bjgh CVE-2023-7038 GHSA-4j8w-p6hv-3qxc
Affected version: <2.0.0-alpha.1
Reported by:
GitHub -
[MEDIUM] Cross site scripting in automad/automad
PKSA-zz67-7tpz-cx3g CVE-2021-37502 GHSA-q3c8-65q7-9v78
Affected version: <1.8.0
Reported by:
GitHub