bolt/core
Releases255
Frequency1 week 3 days
Last Release
Stars587
🧿 Bolt core
CVE History
| CVE | Affected | Published | CVSS v3 | CVSS v2 |
|---|---|---|---|---|
| < 10.3.0 | 6.5 MEDIUM | — | ||
Excessive Data Query Operations in a Large Data Table in GitHub repository pimcore/demo prior to 10.3.0. | ||||
| — | 8.8 HIGH | 6.5 MEDIUM | ||
Bolt CMS <= 4.2 is vulnerable to Remote Code Execution. Unsafe theme rendering allows an authenticated attacker to edit theme to inject server-side template injection that leads to remote code execution. | ||||
| — | 7.5 HIGH | 5 MEDIUM | ||
Controller/Backend/FileEditController.php and Controller/Backend/FilemanagerController.php in Bolt before 4.1.13 allow Directory Traversal. | ||||