Vulnerabilidades em outline
17 resultadosCVE-2022-2342HIGHCross-site Scripting (XSS) - Stored in outline/outlineEPSS 0.6%CVE-2024-40626HIGHStored Cross-site Scripting (XSS) vulnerability in Outline editorEPSS 0.5%CVE-2026-33640CRITICALOutline has a rate limit bypass that allows brute force of email login OTPEPSS 0.5%CVE-2023-3532HIGHCross-site Scripting (XSS) - Stored in outline/outlineEPSS 0.4%CVE-2026-25062MEDIUMOutline Affected an Arbitrary File Read via Path Traversal in JSON ImportEPSS 0.4%CVE-2026-43888HIGHOutline: Zip Extraction Path Escape via PATH_MAX Truncation in Collection ImportEPSS 0.4%CVE-2025-58351MEDIUMOutline's Local File Storage Feature can Cause CSP BypassEPSS 0.4%CVE-2026-24901HIGHOutline's IDOR allows unauthorized viewing and seizing of private deleted draftsEPSS 0.3%CVE-2026-41649HIGHOutline has IDOR in document share creation that allows unauthorized access to private documents across workspacesEPSS 0.3%CVE-2026-43887HIGHOutline: Stored XSS via Comment MentionsEPSS 0.2%CVE-2025-68663MEDIUMOutline has a suspended user authentication bypass via WebSocket connectionsEPSS 0.2%CVE-2026-28506MEDIUMOutline's Information Disclosure in Activity Logs allows User Enumeration of Private DraftsEPSS 0.2%CVE-2026-43889MEDIUMOutline: Unauthorized Document Publication via Mixed collectionId+documentId ShareEPSS 0.2%CVE-2026-43886HIGHOutline: OAuth Scope Validation Logic Error Allows Privilege Escalation to Wildcard API AccessEPSS 0.2%CVE-2026-43890HIGHOutline: IDOR in subscriptions.create allows cross-tenant subscription on private documents (sibling of GHSA-23jj-rp48-w7q7)EPSS 0.2%CVE-2025-64487HIGHOutline is vulnerable to privilege escalation vulnerability in document sharingEPSS 0.2%CVE-2026-44695MEDIUMOutline: Slack OAuth state can link a victim Outline account to an attacker Slack identityEPSS 0.1%