Releases255
Frequency1 week 3 days
Last Release
Stars587
🧿 Bolt core

CVE History

CVEAffectedPublishedCVSS v3CVSS v2
< 10.3.06.5 MEDIUM

Excessive Data Query Operations in a Large Data Table in GitHub repository pimcore/demo prior to 10.3.0.

8.8 HIGH6.5 MEDIUM

Bolt CMS <= 4.2 is vulnerable to Remote Code Execution. Unsafe theme rendering allows an authenticated attacker to edit theme to inject server-side template injection that leads to remote code execution.

7.5 HIGH5 MEDIUM

Controller/Backend/FileEditController.php and Controller/Backend/FilemanagerController.php in Bolt before 4.1.13 allow Directory Traversal.