Umbraco » Umbraco Cms : Security Vulnerabilities, CVEs, (Code Execution)

CVE-2020-9472

Umbraco CMS 8.5.3 allows an authenticated file upload (and consequently Remote Code Execution) via the Install Package functionality.
Max CVSS
6.5
EPSS Score
0.08%
Published
2020-03-16
Updated
2020-03-19

CVE-2020-9471

Umbraco Cloud 8.5.3 allows an authenticated file upload (and consequently Remote Code Execution) via the Install Packages functionality.
Max CVSS
8.8
EPSS Score
0.24%
Published
2020-03-16
Updated
2020-03-19

CVE-2019-25137

Umbraco CMS 4.11.8 through 7.15.10, and 7.12.4, allows Remote Code Execution by authenticated administrators via msxsl:script in an xsltSelection to developer/Xslt/xsltVisualize.aspx.
Max CVSS
7.2
EPSS Score
2.29%
Published
2023-05-18
Updated
2023-05-26
3 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close