backdropcms
Security Risk Profile
36
/100
lowSecurity Risk Score
Comprehensive risk assessment based on 25 vulnerabilities, EPSS scores, exploitation status, and remediation availability.
📅 Data spans from December 20, 2018 to present
25
Total CVEs
4
Critical+High
1
Exploited
4
Unpatched
Threat Assessment
Avg CVSS
5.8
Base severity
Avg EPSS
0%
Exploit probability
Unpatched
4
Critical/High
Risk Level
36/100
low
⚠️ 1 Active Exploits
Severity Distribution
Critical
1High
3Medium
21Low
0Exploit Likelihood
>50% chance
020-50%
05-20%
0<5%
2Age Distribution
Common Weaknesses (CWE)
1
XSS
19
2
Input Validation
3
3
Malicious File Upload
1
4
CSRF
1
Most Affected Products
1. BackdropCMS Backdrop Cms24
2. BackdropCMS Backdrop9
3. Backdrop CMS7
4. composer/backdrop/backdrop7
5. Oracle Application Testing Suite6
Recent Vulnerabilities
See more →CVE-2025-63828
CVSS 6.1medium
11/18/2025🔧 No Patch
CVE-2025-44141
CVSS 6.1medium
6/26/2025🔧 No Patch
CVE-2025-25063
CVSS 4.4EPSS 0%medium
2/3/2025🔧 No Patch
CVE-2025-25062
CVSS 4.4EPSS 0%medium
2/3/2025🔧 No Patch
CVE-2024-54123
CVSS 6.1medium
11/29/2024🔧 No Patch
CVE-2024-41709
CVSS 6.1medium
7/22/2024
CVE-2023-31045
CVSS 4.8medium
4/24/2023
CVE-2012-10004
CVSS 6.1medium
backdrop-contrib Basic Cart basic_cart.cart.inc basic_cart_checkout_form_submit cross site scripting
1/11/2023
CVE-2022-42095
CVSS 4.8medium
11/23/2022🔧 No Patch
CVE-2022-42094
CVSS 4.8medium
11/22/2022🔧 No Patch
Monitor backdropcms in Real-Time
Get instant alerts when new vulnerabilities are discovered. Stay ahead of security threats with SecAlerts.