Vulnerabilidades en WESEEK, Inc.

38 resultados

CVE-2018-16205—Cross-site scripting vulnerability in GROWI v3.2.3 and earlier allows remote attackers to inject arbitrary web script or HTML via New Page mEPSS 0.7%CVE-2018-0655—Cross-site scripting vulnerability in GROWI v.3.1.11 and earlier allows remote authenticated attackers to inject arbitrary web script or HTMEPSS 0.7%CVE-2018-0652—Cross-site scripting vulnerability in GROWI v.3.1.11 and earlier allows remote authenticated attackers to inject arbitrary web script or HTMEPSS 0.7%CVE-2021-20667—Stored cross-site scripting vulnerability due to inadequate CSP (Content Security Policy) configuration in GROWI versions v4.2.2 and earlierEPSS 0.7%CVE-2018-0698—Cross-site scripting vulnerability in GROWI v3.2.3 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecifieEPSS 0.6%CVE-2023-50332—Improper authorization vulnerability exists in the User Management (/admin/users) page of GROWI versions prior to v6.0.6. If this vulnerabilEPSS 0.4%CVE-2023-49119—Stored cross-site scripting vulnerability via the img tags exists in GROWI versions prior to v6.0.0. If this vulnerability is exploited, an EPSS 0.4%CVE-2023-47215—Stored cross-site scripting vulnerability which is exploiting a behavior of the XSS Filter exists in GROWI versions prior to v6.0.0. If thisEPSS 0.3%CVE-2023-49779—Stored cross-site scripting vulnerability exists in the anchor tag of GROWI versions prior to v6.0.0. If this vulnerability is exploited, anEPSS 0.3%CVE-2023-50294—The App Settings (/admin/app) page in GROWI versions prior to v6.0.6 stores sensitive information in cleartext form. As a result, the SecretEPSS 0.3%CVE-2023-50175MEDIUMStored cross-site scripting vulnerability exists in the App Settings (/admin/app) page, the Markdown Settings (/admin/markdown) page, and thEPSS 0.3%CVE-2023-49807—Stored cross-site scripting vulnerability when processing the MathJax exists in GROWI versions prior to v6.0.0. If this vulnerability is expEPSS 0.3%CVE-2023-49598—Stored cross-site scripting vulnerability exists in the event handlers of the pre tags in GROWI versions prior to v6.0.0. If this vulnerabilEPSS 0.3%CVE-2023-45737—Stored cross-site scripting vulnerability exists in the App Settings (/admin/app) page and the Markdown Settings (/admin/markdown) page of GEPSS 0.3%CVE-2023-42436—Stored cross-site scripting vulnerability exists in the presentation feature of GROWI versions prior to v3.4.0. If this vulnerability is expEPSS 0.3%CVE-2023-50339—Stored cross-site scripting vulnerability exists in the User Management (/admin/users) page of GROWI versions prior to v6.1.11. If this vulnEPSS 0.3%CVE-2023-45740MEDIUMStored cross-site scripting vulnerability when processing profile images exists in GROWI versions prior to v4.1.3. If this vulnerability is EPSS 0.3%CVE-2023-46699—Cross-site request forgery (CSRF) vulnerability exists in the User settings (/me) page of GROWI versions prior to v6.0.0. If a user views a EPSS 0.2%

← anteriorpágina 2 / 2siguiente →