keystonejs Latest High & Critical Vulnerabilities

Latest High & Critical vulnerabilities published by keystonejs

JSON RSS CSV 🔔 Create Alert Trigger

3 November 2022

NODE_ENV in Keystone defaults to development with esbuild
CVE-2022-39382
KeystonejsKeystone9.8CRITICAL

25 October 2022

@keystone-6/core vulnerable to field-level access-control bypass for multiselect field
CVE-2022-39322
KeystonejsKeystone9.1CRITICAL

16 May 2022

Arbitrary File Upload Vulnerability in Keystone by KeystoneJS
CVE-2022-29354
KeystonejsKeystone9.8CRITICAL

12 January 2022

Cross-site Scripting (XSS) - Reflected in keystonejs/keystone
CVE-2022-0087
KeystonejsKeystonejs/keystoneEPSS 56%7.1HIGH

24 May 2021

Private Field data leak
CVE-2021-32624
KeystonejsKeystone-57.5HIGH

6 November 2017

CSRF Bypass Vulnerability in KeystoneJS Framework by Getkeystone
CVE-2017-16570
KeystonejsKeystone8.8HIGH

24 October 2017

CSV Injection Vulnerability in KeystoneJS by Getkeystone
CVE-2017-15879
KeystonejsKeystone8.8HIGH