VYPR

Halo

by Halo Dev

Source repositories

CVEs (43)

  • CVE-2023-27164Mar 10, 2023
    risk 0.00cvss epss 0.01

    An arbitrary file upload vulnerability in Halo up to v1.6.1 allows attackers to execute arbitrary code via a crafted .md file.

  • CVE-2022-36784Nov 17, 2022
    risk 0.00cvss epss 0.01

    Elsight – Elsight Halo  Remote Code Execution (RCE) Elsight Halo web panel allows us to perform connection validation. through the POST request : /api/v1/nics/wifi/wlan0/ping we can abuse DESTINATION parameter and leverage it to remote code execution.

  • CVE-2022-32995Jun 27, 2022
    risk 0.00cvss epss 0.16

    Halo CMS v1.5.3 was discovered to contain a Server-Side Request Forgery (SSRF) via the template remote download function.

  • CVE-2022-28074Apr 22, 2022
    risk 0.00cvss epss 0.00

    Halo-1.5.0 was discovered to contain a stored cross-site scripting (XSS) vulnerability via \admin\index.html#/system/tools.

  • CVE-2022-26619Apr 5, 2022
    risk 0.00cvss epss 0.01

    Halo Blog CMS v1.4.17 was discovered to allow attackers to upload arbitrary files via the Attachment Upload function.

  • CVE-2021-43659Mar 24, 2022
    risk 0.00cvss epss 0.01

    In halo 1.4.14, the function point of uploading the avatar, any file can be uploaded, such as uploading an HTML file, which will cause a stored XSS vulnerability.

  • CVE-2022-22125Jan 13, 2022
    risk 0.00cvss epss 0.01

    In Halo, versions v1.0.0 to v1.4.17 (latest) are vulnerable to Stored Cross-Site Scripting (XSS) in the article tag. An authenticated admin attacker can inject arbitrary javascript code that will execute on a victim’s server.

  • CVE-2022-22124Jan 13, 2022
    risk 0.00cvss epss 0.01

    In Halo, versions v1.0.0 to v1.4.17 (latest) are vulnerable to Stored Cross-Site Scripting (XSS) in the profile image. An authenticated attacker can upload a carefully crafted SVG file that will trigger arbitrary javascript to run on a victim’s browser.

  • CVE-2022-22123Jan 13, 2022
    risk 0.00cvss epss 0.01

    In Halo, versions v1.0.0 to v1.4.17 (latest) are vulnerable to Stored Cross-Site Scripting (XSS) in the article title. An authenticated attacker can inject arbitrary javascript code that will execute on a victim’s server.

  • CVE-2020-19038Jul 12, 2021
    risk 0.00cvss epss 0.01

    File Deletion vulnerability in Halo 0.4.3 via delBackup.

  • CVE-2020-19037Jul 12, 2021
    risk 0.00cvss epss 0.01

    Incorrect Access Control vulnearbility in Halo 0.4.3, which allows a malicious user to bypass encrption to view encrpted articles via cookies.

  • CVE-2020-18982Jul 12, 2021
    risk 0.00cvss epss 0.01

    Cross Sie Scripting (XSS) vulnerability in Halo 0.4.3 via CommentAuthorUrl.

  • CVE-2020-18980Jul 12, 2021
    risk 0.00cvss epss 0.01

    Remote Code Executon vulnerability in Halo 0.4.3 via the remoteAddr and themeName parameters.

  • CVE-2020-18979Jul 12, 2021
    risk 0.00cvss epss 0.01

    Cross Siste Scripting (XSS) vulnerablity in Halo 0.4.3 via the X-forwarded-for Header parameter.

  • CVE-2020-21345May 20, 2021
    risk 0.00cvss epss 0.01

    Cross Site Scripting (XSS) vulnerability in Halo 1.1.3 via post publish components in the manage panel, which lets a remote malicious user execute arbitrary code.

  • CVE-2020-21527Sep 30, 2020
    risk 0.00cvss epss 0.01

    There is an Arbitrary file deletion vulnerability in halo v1.1.3. A backup function in the background allows a user, when deleting their backup files, to delete any files on the system through directory traversal.

  • CVE-2020-21526Sep 30, 2020
    risk 0.00cvss epss 0.02

    An Arbitrary file writing vulnerability in halo v1.1.3. In an interface to write files in the background, a directory traversal check is performed on the input path parameter, but the startsWith function can be used to bypass it.

  • CVE-2020-21524Sep 30, 2020
    risk 0.00cvss epss 0.02

    There is a XML external entity (XXE) vulnerability in halo v1.1.3, The function of importing other blogs in the background(/api/admin/migrations/wordpress) needs to parse the xml file, but it is not used for security defense, This vulnerability can detect the intranet, read…

  • CVE-2020-21523Sep 30, 2020
    risk 0.00cvss epss 0.03

    A Server-Side Freemarker template injection vulnerability in halo CMS v1.1.3 In the Edit Theme File function. The ftl file can be edited. This is the Freemarker template file. This file can cause arbitrary code execution when it is rendered in the background. exp: <#assign…

  • CVE-2020-19007Aug 26, 2020
    risk 0.00cvss epss 0.01

    Halo blog 1.2.0 allows users to submit comments on blog posts via /api/content/posts/comments. The javascript code supplied by the attacker will then execute in the victim user's browser.