pkg:PyPI/tendenci

All known vulnerabilities

• CRITICAL9.8CVE-2020-36962Tendenci is Vulnerable to CSV Formula Injection through its Contact Form Message Field
  from 0, <= 12.3.1
• CRITICAL9.8CVE-2020-36962Tendenci is Vulnerable to CSV Formula Injection through its Contact Form Message Field
  from 0, < 12.3.2
• CRITICAL9.8CVE-2020-14942Deserialization of Untrusted Data in Tendenci
  from 0, < 12.0.11
• CRITICAL9.8Deserialization of Untrusted Data in Tendenci
  from 0, < 12.0.11
• MEDIUM6.8Tendenci Affected by Authenticated Remote Code Execution via Pickle Deserialization
  from 0, < 15.3.12
• MEDIUM5.4Tendenci CMS contains a stored Cross-site Scripting (XSS) vulnerability in the Forums module
  from 0, <= 15.3.7
• MEDIUM5.4Tendenci CMS contains a stored Cross-site Scripting (XSS) vulnerability in the Forums module
  from 0, <= 16.14
• MEDIUM5.4Tendenci CMS Contains a Cross-site Scripting Vulnerability in its Jobs Module
  from 0, <= 15.3.7
• MEDIUM5.4Tendenci CMS Contains a Cross-site Scripting Vulnerability in its Jobs Module
  from 0, <= 15.3.7