Markup Setting Vulnerability in Textpattern by Textpattern Project
CVE-2015-8032

5.3MEDIUM

Key Information:

Vendor: Textpattern
Status: Textpattern
Vendor: CVE Published:; 14 August 2020

🔔 Create Textpattern Vulnerability Alert

What is CVE-2015-8032?

In Textpattern version 4.5.7, a security flaw allows unprivileged authors to alter an article's markup setting. This vulnerability could lead to a situation where unauthorized users can change critical formatting options, potentially breaching editorial integrity and content control in the CMS. Developers and users of Textpattern should take precautions and update to newer versions where this issue is addressed.

References

https://github.com/textpattern/textpattern/commit/950d9e0...

x_refsource_CONFIRM

https://github.com/textpattern/textpattern/blob/f94c3fb99...

x_refsource_CONFIRM

CVSS V3.1

Score:

5.3

Severity:

MEDIUM

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 14, 2020
Vulnerability Reserved
Oct 30, 2015

CVE-2015-8032 Data

JSON