Vulnerabilidades em 9001
11 resultadosCVE-2023-37474HIGHPath traversal in copypartyEPSS 42.8%CVE-2023-38501MEDIUMcopyparty vulnerable to reflected cross-site scripting via k304 parameterEPSS 6.2%CVE-2025-54589MEDIUMcopyparty Reflected XSS via Filter ParameterEPSS 2.3%CVE-2025-27145LOWcopyparty renders unsanitized filenames as HTML when user uploads empty filesEPSS 0.4%CVE-2025-54796HIGHCopyparty is vulnerable to Regex Denial of Service (ReDoS) attacks through "Recent Uploads" pageEPSS 0.4%CVE-2025-54423MEDIUMcopyparty has a DOM-Based XSS vulnerability when displaying multimedia metadataEPSS 0.4%CVE-2025-58753MEDIUMcopyparty: Sharing a single file does not fully restrict access to other files in source folderEPSS 0.3%CVE-2026-30974MEDIUMCopyparty volflag `nohtml` did not block javascript in svg filesEPSS 0.3%CVE-2026-32108LOWCopyparty ftp/sftp: Sharing a single file did not fully restrict source-folder accessEPSS 0.3%CVE-2026-27948MEDIUMCopyparty vulnerable to eflected cross-site scripting via setck parameterEPSS 0.2%CVE-2026-32109LOWCopyparty has unexpected JavaScript execution via crafted URL to folder with `.prologue.html`EPSS 0.2%