Security
Headlines
HeadlinesLatestCVEs

Headline

GHSA-w3j8-9p3j-3wjx: Pagekit CMS has an Insecure Direct Object Reference (IDOR) in its User Role component

An Insecure Direct Object Reference (IDOR) in Pagekit CMS v1.0.18 allows attackers to escalate privileges.

The project was archived as of December 1, 2023.

ghsa
Open in Source
#git#intel

Skip to content

Navigation Menu

    • AI CODE CREATION

      • GitHub CopilotWrite better code with AI

      • GitHub SparkBuild and deploy intelligent apps

      • GitHub ModelsManage and compare prompts

      • MCP RegistryNewIntegrate external tools

View all features
  • Pricing

Provide feedback

Saved searches****Use saved searches to filter your results more quickly

Sign up

Appearance settings

  1. GitHub Advisory Database
  2. GitHub Reviewed
  3. CVE-2025-67165

Pagekit CMS has an Insecure Direct Object Reference (IDOR) in its User Role component

Critical severity GitHub Reviewed Published Dec 17, 2025 to the GitHub Advisory Database • Updated Dec 18, 2025

Package

composer pagekit/pagekit (Composer)

Affected versions

<= 1.0.18

Description

Published to the GitHub Advisory Database

Dec 17, 2025

Last updated

Dec 18, 2025

EPSS score

ghsa: Latest News

GHSA-83jg-m2pm-4jxj: Cowrie has a SSRF vulnerability in wget/curl emulation enabling DDoS amplification
ghsa