Vulnerabilities (CVE)

Filtered by vendor Bolt Subscribe

Filtered by product Bolt Cms

CVSS v3 Filter

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 3 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2018-19933	1 Bolt	1 Bolt Cms	2019-01-07	4.3 MEDIUM	6.1 MEDIUM
Bolt CMS <3.6.2 allows XSS via text input click preview button as demonstrated by the Title field of a Configured and New Entry.
CVE-2017-11128	1 Bolt	1 Bolt Cms	2017-07-19	3.5 LOW	5.4 MEDIUM
Bolt CMS 3.2.14 allows stored XSS via text input, as demonstrated by the Title field of a New Entry.
CVE-2017-11127	1 Bolt	1 Bolt Cms	2017-07-19	3.5 LOW	5.4 MEDIUM
Bolt CMS 3.2.14 allows stored XSS by uploading an SVG document with a "Content-Type: image/svg+xml" header.