Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

  1. Reconshell
  2. Vulnerabilities (CVE)
Filtered by vendor Processwire Subscribe
Filtered by product Processwire
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-40487 1 Processwire 1 Processwire 2022-11-01 N/A 6.1 MEDIUM
ProcessWire v3.0.200 was discovered to contain multiple cross-site scripting (XSS) vulnerabilities via the Search Users and Search Pages function. These vulnerabilities allow attackers to execute arbitrary web scripts or HTML via injection of a crafted payload.
CVE-2022-40488 1 Processwire 1 Processwire 2022-11-01 N/A 6.5 MEDIUM
ProcessWire v3.0.200 was discovered to contain a Cross-Site Request Forgery (CSRF).
CVE-2020-27467 1 Processwire 1 Processwire 2022-03-02 7.8 HIGH 7.5 HIGH
A Directory Traversal vulnerability exits in Processwire CMS before 2.7.1 via the download parameter to index.php.