Symphony-cms Symphony_cms

4 CVEs affecting Symphony-cms Symphony_cms. Latest disclosed: 2024-08-13. Critical: 0, High: 0.

Top CVEs affecting Symphony-cms Symphony_cms
CVESeverityScorePublishedSummary
CVE-2024-41613Medium5.42024-08-13A Cross Site Scripting (XSS) vulnerability in Symphony CMS 2.7.10 allows remote attackers to inject arbitrary web script or HTML by editing note.
CVE-2024-41614Medium4.82024-08-13symphonycms <=2.7.10 is vulnerable to Cross Site Scripting (XSS) in the Comment component for articles.
CVE-2011-43412012-02-12Multiple SQL injection vulnerabilities in symphony/content/content.publish.php in Symphony CMS 2.2.3 and possibly other versions before 2.2.4 allow remote auth…
CVE-2011-43402012-02-12Multiple cross-site scripting (XSS) vulnerabilities in Symphony CMS 2.2.3 and possibly other versions before 2.2.4 allow remote authenticated users with Author…