Contact
DMCA
Privacy
Robuta
Sponsor of the Day:
Jerkmate
https://civicrm.org/advisory/civi-sa-2026-01-file-api-remote-code-execution
CIVI-SA-2026-01: File API - Remote Code Execution | CiviCRM
civi sa 2026
remote code execution
file api
01
civicrm
https://civicrm.org/advisory/civi-sa-2025-02-contact-images-csrf
CIVI-SA-2025-02: Contact Images (CSRF) | CiviCRM
civi sa
2025 02
images
csrf
civicrm
https://civicrm.org/advisory/civi-sa-2025-04-arbitrary-file-move
CIVI-SA-2025-04: Arbitrary File Move | CiviCRM
civi sa
2025 04
arbitrary file
move
civicrm
https://civicrm.org/advisory/civi-sa-2026-12-pdf-formats-xss
CIVI-SA-2026-12: PDF Formats (XSS) | CiviCRM
civi sa 2026
pdf formats
12
xss
civicrm
https://civicrm.org/advisory/civi-sa-2026-03-standalone-extraneous-staff-permission
CIVI-SA-2026-03: Standalone - Extraneous Staff Permission | CiviCRM
civi sa 2026
03
standalone
extraneous
staff
https://civicrm.org/advisory/civi-sa-2026-05-apiv3-explorer-xss
CIVI-SA-2026-05: APIv3 Explorer (XSS) | CiviCRM
civi sa 2026
05
apiv3
explorer
xss