Skip to main content

Bolt Cms

3 CVEs product

Monthly

CVE-2022-36532 HIGH POC THREAT Act Now

Bolt CMS contains a vulnerability in version 5.1.12 and below that allows an authenticated user with the ROLE_EDITOR privileges to upload and rename a malicious file to achieve remote code execution. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 25.3%.

RCE Bolt Cms
NVD VulDB
CVSS 3.1
8.8
EPSS
25.3%
Threat
4.0
CVE-2021-40219 PHP HIGH POC This Week

Bolt CMS <= 4.2 is vulnerable to Remote Code Execution. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

RCE Code Injection Bolt Cms
NVD GitHub VulDB
CVSS 3.1
8.8
EPSS
3.3%
CVE-2018-19933 PHP MEDIUM POC PATCH This Month

Bolt CMS <3.6.2 allows XSS via text input click preview button as demonstrated by the Title field of a Configured and New Entry. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS Bolt Cms
NVD GitHub Exploit-DB
CVSS 3.0
6.1
EPSS
3.5%
EPSS 25% 4.0 CVSS 8.8
HIGH POC THREAT Act Now

Bolt CMS contains a vulnerability in version 5.1.12 and below that allows an authenticated user with the ROLE_EDITOR privileges to upload and rename a malicious file to achieve remote code execution. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 25.3%.

RCE Bolt Cms
NVD VulDB
EPSS 3% CVSS 8.8
HIGH POC This Week

Bolt CMS <= 4.2 is vulnerable to Remote Code Execution. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

RCE Code Injection Bolt Cms
NVD GitHub VulDB
EPSS 3% CVSS 6.1
MEDIUM POC PATCH This Month

Bolt CMS <3.6.2 allows XSS via text input click preview button as demonstrated by the Title field of a Configured and New Entry. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS Bolt Cms
NVD GitHub Exploit-DB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy