📦 Perch

CVE-2023-53889 is a remote code execution vulnerability in Perch CMS 3.2 that allows authenticated administrators to upload malicious PHP files through the assets interface. Attackers can execute arbi...

A stored XSS vulnerability in Perch CMS 3.2 allows authenticated administrators to inject malicious JavaScript into the Help button URL setting. When other authenticated users click the Help button, t...

Perch CMS 3.2 contains a stored cross-site scripting vulnerability where authenticated users can upload malicious SVG files containing JavaScript. When these files are viewed, the embedded scripts exe...