Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by vendor Contao Subscribe
Filtered by product Contao Cms

CVSS v3 Filter

ALL
NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 4 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2019-10643 1 Contao 1 Contao Cms 2021-07-21 7.5 HIGH 9.8 CRITICAL
Contao 4.7 allows Use of a Key Past its Expiration Date.
CVE-2014-1860 1 Contao 1 Contao Cms 2020-01-14 7.5 HIGH 9.8 CRITICAL
Contao CMS through 3.2.4 has PHP Object Injection Vulnerabilities
CVE-2017-16558 1 Contao 1 Contao Cms 2019-04-26 7.5 HIGH 9.8 CRITICAL
Contao 3.0.0 to 3.5.30 and 4.0.0 to 4.4.7 contains an SQL injection vulnerability in the back end as well as in the listing module.
CVE-2019-10641 1 Contao 1 Contao Cms 2019-04-19 5.0 MEDIUM 9.8 CRITICAL
Contao before 3.5.39 and 4.x before 4.7.3 has a Weak Password Recovery Mechanism for a Forgotten Password.