📦 Textpattern

CVE-2020-19510 is an arbitrary file upload vulnerability in Textpattern CMS that allows authenticated attackers to upload malicious files to the server. This affects Textpattern 4.7.3 installations wh...

CVE-2023-50038 is an arbitrary file upload vulnerability in Textpattern CMS v4.8.8 that allows authenticated attackers to upload malicious files to the server. This can lead to remote code execution a...

CVE-2023-36220 is a directory traversal vulnerability in Textpattern CMS v4.8.8 that allows authenticated remote attackers to upload malicious plugins, potentially leading to arbitrary code execution ...

CVE-2020-29458 is a Cross-Site Request Forgery (CSRF) vulnerability in Textpattern CMS 4.6.2 that allows attackers to trick authenticated administrators into performing unauthorized actions via the pr...

Textpattern CMS 4.8.8 contains a stored cross-site scripting vulnerability in the article excerpt field that allows authenticated users to inject malicious JavaScript. When other users view articles c...