Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:composer/pagekit/pagekit@1.0.11
purl pkg:composer/pagekit/pagekit@1.0.11
Next non-vulnerable version None.
Latest non-vulnerable version None.
Risk 10.0
Vulnerabilities affecting this package (6)
Vulnerability Summary Fixed by
VCID-4b6k-tr9h-z7b2
Aliases:
CVE-2025-67165
GHSA-w3j8-9p3j-3wjx
An Insecure Direct Object Reference (IDOR) in Pagekit CMS v1.0.18 allows attackers to escalate privileges. There are no reported fixed by versions.
VCID-86f9-mdmh-jbbj
Aliases:
CVE-2021-44135
GHSA-45hc-r4fj-qj89
SQL injection in pagekit/pagekit There are no reported fixed by versions.
VCID-kyhu-u4v4-6kfq
Aliases:
CVE-2018-14381
GHSA-v47j-rw9h-6m47
1.0.14
Affected by 4 other vulnerabilities.
VCID-mnta-3rft-aqfd
Aliases:
CVE-2025-67164
GHSA-m4f2-xpfq-h97v
An authenticated arbitrary file upload vulnerability in the /storage/poc.php component of Pagekit CMS v1.0.18 allows attackers to execute arbitrary code via uploading a crafted PHP file. There are no reported fixed by versions.
VCID-tt3d-1ty4-sbaj
Aliases:
CVE-2018-11564
GHSA-3rwj-v7jp-w542
1.0.14
Affected by 4 other vulnerabilities.
VCID-y8vq-atne-2ydw
Aliases:
CVE-2024-45967
GHSA-xw32-6422-frqm
Pagekit 1.0.18 is vulnerable to Cross Site Scripting (XSS) in index.php/admin/site/widget. There are no reported fixed by versions.
Vulnerabilities fixed by this package (1)
Vulnerability Summary Aliases
VCID-ueau-9u7h-xqcj Pagekit Weak Password Recovery Mechanism for Forgotten Password CVE-2017-5594
GHSA-rp89-32rp-qpq2

Date Actor Action Vulnerability Source VulnerableCode Version
2026-06-12T20:40:39.217836+00:00 GitLab Importer Affected by VCID-mnta-3rft-aqfd https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/pagekit/pagekit/CVE-2025-67164.yml 38.6.0
2026-06-12T20:40:38.538087+00:00 GitLab Importer Affected by VCID-4b6k-tr9h-z7b2 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/pagekit/pagekit/CVE-2025-67165.yml 38.6.0
2026-06-12T19:41:46.429197+00:00 GitLab Importer Affected by VCID-y8vq-atne-2ydw https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/pagekit/pagekit/CVE-2024-45967.yml 38.6.0
2026-06-12T18:03:52.637502+00:00 GitLab Importer Affected by VCID-86f9-mdmh-jbbj https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/pagekit/pagekit/CVE-2021-44135.yml 38.6.0
2026-06-12T17:02:24.717756+00:00 GitLab Importer Affected by VCID-kyhu-u4v4-6kfq https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/pagekit/pagekit/CVE-2018-14381.yml 38.6.0
2026-06-12T16:59:34.996235+00:00 GitLab Importer Affected by VCID-tt3d-1ty4-sbaj https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/pagekit/pagekit/CVE-2018-11564.yml 38.6.0
2026-06-12T15:39:38.826004+00:00 GitLab Importer Fixing VCID-ueau-9u7h-xqcj https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/pagekit/pagekit/CVE-2017-5594.yml 38.6.0
2026-06-12T08:22:04.406555+00:00 GithubOSV Importer Fixing VCID-ueau-9u7h-xqcj https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-rp89-32rp-qpq2/GHSA-rp89-32rp-qpq2.json 38.6.0
2026-06-11T20:29:40.896053+00:00 GHSA Importer Fixing VCID-ueau-9u7h-xqcj https://github.com/advisories/GHSA-rp89-32rp-qpq2 38.6.0