Security Advisories for october/system in packagist
Low
5 months ago
October CMS Allows Unprotected SVG Rename in Media Manager
packagist
october/october, october/system
Low
over 1 year ago
October System module has an Open Redirect for Administrator Accounts
packagist
october/system
Low
over 1 year ago
October System module has a Reflected XSS via X-October-Request-Handler Header
packagist
october/system
Moderate
almost 2 years ago
October CMS stored XSS by authenticated backend user with improper configuration
packagist
october/system
Critical
almost 2 years ago
October CMS safe mode bypass using Twig sandbox escape
packagist
october/system
Moderate
almost 2 years ago
October CMS safe mode bypass using Page template injection
packagist
october/system
High
almost 3 years ago
October CMS Safe Mode bypass leads to authenticated Remote Code Execution
packagist
october/system
High
about 3 years ago
October CMS upload process vulnerable to RCE via Race Condition
packagist
october/system
Moderate
over 3 years ago
Missing server signature validation in OctoberCMS
packagist
october/system
High
over 3 years ago
October/System authenticated file write leads to remote code execution
packagist
october/system
High
almost 4 years ago
Deleted Admin Can Sign In to Admin Interface
packagist
october/system, october/october