Pagekit: >> Pagekit >> 1.0.17 Security Vulnerabilities
pagekit all versions, as of 15-10-2021, is vulnerable to SQL Injection via Comment listing.
CVSS Score
9.8
EPSS Score
0.003
Published
2022-04-01
A CSRF vulnerability in Pagekit 1.0.17 allows an attacker to upload an arbitrary file by removing the CSRF token from a request.
CVSS Score
8.8
EPSS Score
0.002
Published
2019-11-22
The Reset Password feature in Pagekit 1.0.17 gives a different response depending on whether the e-mail address of a valid user account is entered, which might make it easier for attackers to enumerate accounts.
CVSS Score
5.3
EPSS Score
0.002
Published
2019-09-21