Contao: 5.0.10 → 5.3.15
Contao · upgrade impact · Official site ↗
Fixed by upgrading to 5.3.15 iVulnerabilities that affect 5.0.10 but no longer affect 5.3.15 — the security gain from this upgrade, by exploited status then exploitation probability.
Exploited first, then by exploitation probability (EPSS).
CVE-2023-29200 MEDIUM EPSS 1% ✓ cleared in 5.3.15 CVE-2024-28235 HIGH EPSS 1% ✓ cleared in 5.3.15 CVE-2024-28234 MEDIUM EPSS 1% ✓ cleared in 5.3.15 CVE-2023-36806 MEDIUM EPSS 1% ✓ cleared in 5.3.15 CVE-2024-45398 HIGH EPSS 1% ✓ cleared in 5.3.15 CVE-2024-28190 MEDIUM EPSS 1% ✓ cleared in 5.3.15 CVE-2024-28191 LOW EPSS 0% ✓ cleared in 5.3.15Still open in 5.3.15 iKnown vulnerabilities that affect 5.3.15 too — upgrading to it does not clear these.
These affect 5.3.15 as well — a later release may be needed.
CVE-2024-45965 MEDIUM EPSS 0% → fixed in 5.5.6 CVE-2025-57757 MEDIUM EPSS 0% → fixed in 5.6.1 CVE-2025-57756 MEDIUM EPSS 0% → fixed in 5.6.1 CVE-2025-57758 MEDIUM EPSS 0% → fixed in 5.6.1 CVE-2025-57759 MEDIUM EPSS 0% → fixed in 5.6.1 CVE-2025-29790 MEDIUM EPSS 0% → fixed in 5.5.6 CVE-2025-65960 MEDIUM EPSS 0% → fixed in 5.6.5 CVE-2025-65961 LOW EPSS 0% → fixed in 5.6.5