Browse all 4 CVE security advisories affecting Axiell. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Axiell develops library and collections management software used by cultural institutions worldwide. Historically, their products have been vulnerable to remote code execution, cross-site scripting, and privilege escalation flaws, often stemming from improper input validation and access control weaknesses. While no major public security incidents have been widely reported, the four documented CVEs highlight persistent risks in web interfaces and authentication mechanisms. Their systems typically handle sensitive cultural data but lack extensive public disclosure of security practices, leaving potential exposure in environments where patching may be delayed.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2022-45051 | Reflected POST XSS in Axiell Iguana CMS — IguanaCWE-79 | 6.1 | Medium | 2023-01-04 |
| CVE-2022-45049 | Reflected XSS in Axiell Iguana CMS — IguanaCWE-79 | 6.1 | Medium | 2023-01-04 |
| CVE-2022-45052 | Local File Inclusion in Axiell Iguana CMS — IguanaCWE-552 | 8.8 | High | 2023-01-04 |
| CVE-2022-45050 | Reflected XSS in Axiell Iguana CMS — IguanaCWE-79 | 6.1 | Medium | 2022-12-01 |
This page lists every published CVE security advisory associated with Axiell. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.