opensource-workshop/connect-cms vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
CVE-2026-32300Highopensource-workshop/connect-cms: Connect CMS: Improper Authorization in the My Page Profile Update Feature Allows Modification of…CVE-2026-32299Highopensource-workshop/connect-cms: Connect CMS: Information Disclosure Due to Improper Authorization through the Page Content…CVE-2026-32279Mediumopensource-workshop/connect-cms: Connect CMS has SSRF in the External Page Migration Feature of its Page Management PluginCVE-2026-32278Highopensource-workshop/connect-cms: Connect CMS has Stored Cross-site Scripting (XSS) in the File Field of its Form PluginCVE-2026-32277Highopensource-workshop/connect-cms: Connect-CMS has DOM-based Cross-Site Scripting (XSS) in the Cabinet Plugin List ViewCVE-2026-32276Highopensource-workshop/connect-cms: Connect-CMS has Arbitrary Code Execution by an Authenticated User in its Code Study PluginGHSA-2237-5R9W-VM8JHighopensource-workshop/connect-cms: Connect-CMS information that is restricted to viewing is visibleGHSA-5RJC-JC28-CWGGMediumopensource-workshop/connect-cms: Connect-CMS Access control vulnerabilityGHSA-QXH3-JGVH-X55JMediumopensource-workshop/connect-cms: Connect-CMS Privilege Escalation Vulnerability

Stop the waste.
Protect your environment with Kodem.