Vulnerabilities in OneUptime

24 results

CVE-2026-32598MEDIUMOneUptime: Password Reset Token Logged at INFO LevelEPSS 0.2%CVE-2026-32308HIGHOneUptime: Stored XSS via Mermaid Diagram Rendering (securityLevel: "loose")EPSS 0.2%CVE-2026-30920HIGHOneUptime has broken access control in GitHub App installation flow that allows unauthorized project bindingEPSS 0.2%CVE-2026-33143HIGHOneUptime: WhatsApp Webhook Missing Signature VerificationEPSS 0.2%

← previouspage 2 / 2next →