Umbraco.cms.web.backoffice
This hub aggregates every CVE we track for Umbraco.cms.web.backoffice, a product in the oss libraries space. Use it to gauge the current risk picture and drill into individual advisories.
4
CVEs tracked
0
Critical
1
High
0
In CISA KEV
Severity distribution
MEDIUM3HIGH1
Monthly trend
0
0
0
0
0
0
0
0
1
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
2024-072026-06
Latest CVEs
The 4 most recently published vulnerabilities affecting Umbraco.cms.web.backoffice.
- CVE-2025-27602Umbraco Allows a Restricted Editor User to Delete Media Item or Access Unauthorized Content4.9
- CVE-2024-34071Open Redirect Bypass Protection 6.1
- CVE-2024-29035Umbraco's Blind SSRF Leads to Port Scan by using Webhooks4.1
- CVE-2023-37267Umbraco allows possible Admin-level access to backoffice without Auth under rare conditions7.5
Product normalization is registry-driven with AI assist and human review. How it works