Backdrop Core
Approved changes feed: RSS · Atom
cpe:2.3:a:backdropcms:backdrop_core:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | Backdropcms (c20e3035-f9db-563d-84ef-b3631140211a) |
|---|---|
| Product | Backdrop Core (9dc2f335-e712-57fc-b07e-9e67781ff405) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from purl2cpe mapping |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
pkg:github/backdrop/backdrop |
purl2cpe | 2026-06-01 10:12:18.159077 |
pkg:golang/github.com/backdrop/backdrop |
purl2cpe | 2026-06-01 10:12:18.159079 |
pkg:sourceforge/backdrop-cms.mirror |
purl2cpe | 2026-06-01 10:12:18.159081 |
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2019-14770 |
vulnerable | 2026-06-08 05:12:55.994484 |
Details available
In Backdrop CMS 1.12.x before 1.12.8 and 1.13.x before 1.13.3, some menu links within the administration bar may be crafted to execute JavaScript when the administrator is logged in and uses the search functionality. (This issue is mitigated by the attacker needing permissions to create administrative menu links, such as by creating a content type or layout. Such permissions are usually restricted to trusted or administrative users.)
Published: 2019-08-08T01:36:04.000Z
Updated: 2024-08-05T00:26:38.687Z Reference links |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.