Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

halo — Vulnerabilities & Security Advisories 8

All 8 CVE vulnerabilities found in halo, with AI-generated Chinese analysis, references, and POCs.

Vendor: halo-dev

CVE IDTitleCVSSSeverityPublished
CVE-2025-15141 Halo Configuration actuator information disclosure CWE-200 3.1 Low2025-12-28
CVE-2025-14117 fit2cloud Halo cross-site request forgery CWE-352 4.3 Medium2025-12-06
CVE-2024-56156 Halo Vulnerable to Stored XSS and RCE via File Upload Bypass CWE-79 9.0 -2025-04-25
CVE-2024-43793 Halo's editor has a stored XSS vulnerability CWE-79 6.3 Medium2024-09-11
CVE-2024-43792 Halo's editor has a stored Cross-Site Scripting vulnerability CWE-79 6.3 Medium2024-09-02
CVE-2022-22125 Halo CMS - Stored Cross-Site Scripting (XSS) in Article's Tag CWE-79 4.8 Medium2022-01-13
CVE-2022-22124 Halo CMS - Stored Cross-Site Scripting (XSS) in Profile Image CWE-79 5.4 Medium2022-01-13
CVE-2022-22123 Halo CMS - Stored Cross-Site Scripting (XSS) in Article's Title CWE-79 5.4 Medium2022-01-13

All 8 known CVE vulnerabilities affecting halo with full Chinese analysis, references, and POCs where available.