Publify_core

This hub aggregates every CVE we track for Publify_core, a product in the oss libraries space. Use it to gauge the current risk picture and drill into individual advisories.

Severity distribution

Monthly trend

The 15 most recently published vulnerabilities affecting Publify_core.

• CVE-2024-39311Publify Vulnerable To Cross-Site Scripting (XSS) Via Redirects Requiring User Interaction5.4Mar 28, 2025
• CVE-2023-0569Weak Password Requirements in publify/publify6.5Jan 29, 2023
• CVE-2023-0299Improper Input Validation in publify/publify9.8Jan 14, 2023
• CVE-2022-2815Insecure Storage of Sensitive Information in publify/publify6.5Jan 14, 2023
• CVE-2022-1812Integer Overflow or Wraparound in publify/publify9.8Jan 14, 2023
• CVE-2022-1811Unrestricted Upload of File with Dangerous Type in publify/publify5.4May 23, 2022
• CVE-2022-1810Authorization Bypass Through User-Controlled Key in publify/publify4.3May 23, 2022
• CVE-2022-1553Leaking password protected articles content due to improper access control in publify/publify4.9May 16, 2022
• CVE-2022-0578Code Injection in publify/publify6.5May 16, 2022
• CVE-2022-0574Improper Access Control in publify/publify6.5May 16, 2022
• CVE-2022-0524Business Logic Errors in publify/publify7.5Feb 8, 2022
• CVE-2021-25975Publify - Stored Cross-Site Scripting (XSS) due to Unrestricted File Upload5.4Nov 10, 2021
• CVE-2021-25974Publify - Stored Cross-Site Scripting (XSS) in Editor5.4Nov 10, 2021
• CVE-2021-25973Publify - Improper Authorization Leads to Guest Signup Restriction Bypass6.5Nov 2, 2021
• CVE-2014-3211Publify before 8.0.1 is vulnerable to a Denial of Service attack7.5Jan 9, 2020