Vulnerabilities in ExpressionEngine

2 results

CVE-2021-44534MEDIUMInsufficient user input filtering leads to arbitrary file read by non-authenticated attacker, which results in sensitive information disclosEPSS 0.6%CVE-2025-59473MEDIUMSQL Injection vulnerability in the Structure for Admin authenticated userEPSS 0.3%