Ssw Vulnerabilities
Comprehensive security vulnerability database for Ssw products
2
0
0
0
Severity Distribution
| Description | Vendor / Product | Exploit Status | |||
|---|---|---|---|---|---|
| CVE-2024-45391 | 7.5 | An attacker could potentially access sensitive search tokens from the lock file of websites using the Tina CMS command line interface before version 1.6.2, which could allow them to manipulate or access restricted content. If your site uses search functionality, it's crucial to upgrade to the latest version and change your search token immediately to prevent exploitation. | sswtinacms\/cli | Theoretical | over 1 year agoSep 3, 2024 |
| CVE-2023-25164 | 7.5 | This vulnerability allows an attacker to access sensitive information, like API keys, stored in environment variables, as these values are exposed in plaintext within the code of affected sites. It impacts versions of the Tina CMS CLI from 1.0.0 to 1.0.8, so if you're using one of these versions and have sensitive data stored, you should change those credentials immediately and upgrade to version 1.0.9 or later. | sswtinacms\/cli | Theoretical | about 3 years agoFeb 8, 2023 |
About Ssw Security
This page tracks all publicly disclosed security vulnerabilities (CVEs) affecting Ssw products. Our database is updated in real-time from the National Vulnerability Database (NVD) and enriched with exploit information from GitHub and other security research sources.
Each CVE listing includes CVSS severity scores, exploit availability status, AI-powered vulnerability summaries, and links to official patches and security advisories.