decidim Summary
Latest vulnerabilities published by decidim
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
XSS Vulnerability in Decidim Framework Affects Meeting Embeds
CVE-2024-45594DecidimDecidim FrameworkSQL Command Manipulation Vulnerability in Decidim Awesome Module by Decidim
CVE-2024-43415DecidimDecidim Awesome ModuleDecidim Vulnerable to XSS Attack in Version Control Feature
CVE-2024-41673DecidimDecidim7.1HIGHCross-Site Scripting in Decidim's Admin Panel by Decidim
CVE-2024-32034DecidimDecidim4.8MEDIUMXSS Vulnerability in Decidim's QuillJS Editor
CVE-2024-39910DecidimDecidim4.8MEDIUMDecidim Pagination Feature Vulnerable to XSS Attack
CVE-2024-32469DecidimDecidim7.1HIGHDecidim Fixes XSS Vulnerability in Admin Panel
CVE-2024-27095DecidimDecidim4.8MEDIUMVulnerability in Decidim Participatory Democracy Framework Could Allow Data Access
CVE-2024-27090DecidimDecidim5.3MEDIUMRace Condition in Endorsement Feature Allows Multiple Endorsements
CVE-2023-47634decidimdecidim3.1LOWPotential XSS Vulnerability in Decidim Dynamic File Upload Feature
CVE-2023-51447DecidimDecidim5.4MEDIUMUnlimited Time Acceptance of Invitations through Password Reset Functionality in Decidim Prior to Version 2.0.9 of the 'devise_invitable' Gem
CVE-2023-48220DecidimDecidim5.7MEDIUMDisabled CSRF authenticity token check in questionnaire templates preview
CVE-2023-47635DecidimDecidim5.7MEDIUMDecidim has broken access control in templates
CVE-2023-36465DecidimDecidim9.1CRITICALDecidim Cross-site Scripting vulnerability in the external link redirections
CVE-2023-32693DecidimDecidim8.1HIGHDecidim Cross-site Scripting vulnerability in the processes filter
CVE-2023-34089DecidimDecidim8.1HIGHDecidim vulnerable to sensitive data disclosure
CVE-2023-34090DecidimDecidim7.5HIGH