Vulnerabilidades en Admidio
41 resultadosCVE-2021-43810HIGHCross-site Scripting (XSS) when redirect an urlEPSS 5.8%CVE-2021-32630CRITICALVariousEPSS 1.6%CVE-2020-11004HIGHSQL Injection in AdmidioEPSS 1.5%CVE-2024-38529CRITICALAdmidio Vulnerable to RCE via Arbitrary File Upload in Message AttachmentEPSS 1.2%CVE-2022-0991HIGHInsufficient Session Expiration in admidio/admidioEPSS 1.0%CVE-2026-32756HIGHAdmidio: Unrestricted File Upload via CSRF Token Validation Bypass in Documents & Files ModuleEPSS 1.0%CVE-2024-37906CRITICALAdmidio has Blind SQL Injection in ecard_send.phpEPSS 0.9%CVE-2023-3692MEDIUMUnrestricted Upload of File with Dangerous Type in admidio/admidioEPSS 0.8%CVE-2026-34381HIGHAdmidio: Unauthenticated Access to Role-Restricted documents via neutralized .htaccessEPSS 0.6%CVE-2023-4190MEDIUMInsufficient Session Expiration in admidio/admidioEPSS 0.5%CVE-2023-3109MEDIUMCross-site Scripting (XSS) - Stored in admidio/admidioEPSS 0.5%CVE-2024-47836LOWAdmidio vulnerable to HTML Injection In The Messages SectionEPSS 0.5%CVE-2023-3302MEDIUMImproper Neutralization of Formula Elements in a CSV File in admidio/admidioEPSS 0.5%CVE-2026-32812MEDIUMAdmidio Vulnerable to SSRF and Local File Read via Unrestricted URL Fetch in SSO Metadata EndpointEPSS 0.4%CVE-2023-3303MEDIUMImproper Access Control in admidio/admidioEPSS 0.4%CVE-2023-3304MEDIUMImproper Access Control in admidio/admidioEPSS 0.4%CVE-2025-62617HIGHAdmidio Vulnerable to Authenticated SQL Injection in Member Assignment FunctionalityEPSS 0.4%CVE-2026-41656MEDIUMAdmidio: Path Traversal via Unvalidated `name` Parameter in Document Add Mode Enables Arbitrary Server File ReadEPSS 0.4%CVE-2026-41671MEDIUMAdmidio: OIDC Token Introspection Endpoint Returns Active for All Tokens Without ValidationEPSS 0.3%CVE-2026-32817CRITICALAdmidio is Missing Authorization and CSRF Protection on Document and Folder DeletionEPSS 0.3%