[フレーム]

Security Advisories

Learn how to report security issues - Read Ibexa's security policy - Check out our security blog posts - Security Reporters Hall of Fame

IBEXA-SA-2025-004: XSS and enumeration vulnerabilities in back office

IBEXA-SA-2025-003: XSS vulnerabilities in back office

IBEXA-SA-2025-002: XXE vulnerability in RichText

IBEXA-SA-2025-001: Vulnerabilities in shopping cart and publish unscheduling

IBEXA-SA-2024-006: Vulnerabilities in Content name pattern, Commerce shop, and Varnish/vhost templates

IBEXA-SA-2024-005: Persistent XSS in RichText

IBEXA-SA-2024-004: DOM-based XSS in file upload

IBEXA-SA-2024-003: Vulnerability in image-optimizer dependency

IBEXA-SA-2024-002: File validation and workflow stages

IBEXA-SA-2024-001: Taxonomy Tree Controller fails to check permissions

1
2
3
4
5
6