threat
engine
.sh
Back
·
··:··
Home
/
Product
/
torchbox wagtail
Product
torchbox wagtail
18 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2026-44201
< 7.0.7
Wagtail is an open source content management system built on Django. Prior to 7.0.7, 7.3.2, and 7.4, the Documents and Images API
5.3
MEDIUM
CVE-2026-44200
< 7.0.7
Wagtail is an open source content management system built on Django. Prior to 7.0.7, 7.3.2, and 7.4, a CMS user with limited acces
6.5
MEDIUM
CVE-2026-44199
< 7.0.7
Wagtail is an open source content management system built on Django. Prior to 7.0.7, 7.3.2, and 7.4, a CMS user with limited acces
6.5
MEDIUM
CVE-2026-44198
< 7.0.7
Wagtail is an open source content management system built on Django. Prior to 7.0.7, 7.3.2, and 7.4, a CMS user without the abilit
4.3
MEDIUM
CVE-2026-44197
< 7.0.7
Wagtail is an open source content management system built on Django. Prior to 7.0.7, 7.3.2, and 7.4, a CMS user without the abilit
6.5
MEDIUM
CVE-2026-28223
< 6.3.8
Wagtail is an open source content management system built on Django. Prior to versions 6.3.8, 7.0.6, 7.2.3, and 7.3.1, a stored cr
6.1
MEDIUM
CVE-2026-28222
< 6.3.8
Wagtail is an open source content management system built on Django. Prior to versions 6.3.8, 7.0.6, 7.2.3, and 7.3.1, a stored cr
6.1
MEDIUM
CVE-2026-25517
< 6.3.6
Wagtail is an open source content management system built on Django. Prior to versions 6.3.6, 7.0.4, 7.1.3, 7.2.2, and 7.3, due to
2.7
LOW
CVE-2024-39317
>= 2.0 and < 5.2.6
Wagtail is an open source content management system built on Django. A bug in Wagtail's
parse_query_string
would result in it ta
6.5
MEDIUM
CVE-2023-45809
< 4.1.9
Wagtail is an open source content management system built on Django. A user with a limited-permission editor account for the Wagta
2.7
LOW
CVE-2023-28837
< 4.1.4
Wagtail is an open source content management system built on Django. Prior to versions 4.1.4 and 4.2.2, a memory exhaustion bug ex
4.9
MEDIUM
CVE-2023-28836
>= 1.5 and < 4.1.4
Wagtail is an open source content management system built on Django. Starting in version 1.5 and prior to versions 4.1.4 and 4.2.2
6.4
MEDIUM
CVE-2022-21683
>= 2.13 and < 2.15.2
Wagtail is a Django based content management system focused on flexibility and user experience. When notifications for new replies
3.5
LOW
CVE-2021-32681
< 2.11.8
Wagtail is an open source content management system built on Django. A cross-site scripting vulnerability exists in versions 2.13-
5.4
MEDIUM
CVE-2021-29434
>= 2.12.0 and < 2.12.4
Wagtail is a Django content management system. In affected versions of Wagtail, when saving the contents of a rich text field in t
6.1
MEDIUM
CVE-2020-15118
>= 2.7 and < 2.7.4
In Wagtail before versions 2.7.4 and 2.9.3, when a form page type is made available to Wagtail editors through the `wagtail.contri
5.7
MEDIUM
CVE-2020-11037
>= 2.8 and < 2.8.2
In Wagtail before versions 2.7.3 and 2.8.2, a potential timing attack exists on pages or documents that have been protected with a
6.1
MEDIUM
CVE-2020-11001
>= 1.9 and <= 2.7.1
In Wagtail before versions 2.8.1 and 2.7.2, a cross-site scripting (XSS) vulnerability exists on the page revision comparison view
5.8
MEDIUM
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin