Exposure of Bitrix24
CRM38
exposure score
16,845
sites use
0
exploited
4
critical
CVEs
8 resultsCVE-2023-1718HIGHBitrix24 Denial-of-Service (DoS) via Improper File Stream AccessEPSS 24.1%CVE-2023-1719HIGHBitrix24 Insecure Global Variable ExtractionEPSS 5.0%CVE-2023-1714HIGHBitrix24 Remote Command Execution (RCE) via Unsafe Variable ExtractionEPSS 1.4%CVE-2023-1713HIGHBitrix24 Remote Command Execution (RCE) via Insecure Temporary File CreationEPSS 1.2%CVE-2023-1717CRITICALBitrix24 Cross-Site Scripting (XSS) via Client-side Prototype PollutionEPSS 1.1%CVE-2023-1720CRITICALBitrix24 Stored Cross-Site Scripting (XSS) via File UploadEPSS 0.9%CVE-2023-1716CRITICALBitrix24 Stored Cross-Site Scripting (XSS) via Improper Input Neutralization on Invoice Edit Page (2 of 2)EPSS 0.7%CVE-2023-1715CRITICALBitrix24 Stored Cross-Site Scripting (XSS) via Improper Input Neutralization on Invoice Edit Page (1 of 2)EPSS 0.6%
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →