cbcvebase.

Aleksandar Uro Evi Stock Ticker vulnerabilities

4 known vulnerabilities affecting aleksandar_uro_evi/stock_ticker.

Total CVEs
4
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
MEDIUM4

Vulnerabilities

Page 1 of 1
CVE-2022-45365P3MEDIUMCVSS 6.1PoC≥ n/a, ≤ 3.23.22023-12-14
CVE-2022-45365 [MEDIUM] CWE-79 CVE-2022-45365: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability i Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Aleksandar Urošević Stock Ticker allows Reflected XSS.This issue affects Stock Ticker: from n/a through 3.23.2.
nvd
CVE-2023-40208P3MEDIUMCVSS 6.1PoC≥ n/a, ≤ 3.23.32023-09-04
CVE-2023-40208 [MEDIUM] CWE-79 CVE-2023-40208: Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Aleksandar Urošević Stock Ticker plugi Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Aleksandar Urošević Stock Ticker plugin <= 3.23.3 versions.
nvd
CVE-2023-27626P4MEDIUMCVSS 5.3≥ n/a, ≤ 3.23.02024-12-09
CVE-2023-27626 [MEDIUM] CWE-862 CVE-2023-27626: Missing Authorization vulnerability in Aleksandar Urošević Stock Ticker allows Exploiting Incorrectl Missing Authorization vulnerability in Aleksandar Urošević Stock Ticker allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Stock Ticker: from n/a through 3.23.0.
nvd
CVE-2023-51541P4MEDIUMCVSS 5.4≥ n/a, ≤ 3.23.42023-12-29
CVE-2023-51541 [MEDIUM] CWE-79 CVE-2023-51541: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability i Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Aleksandar Urošević Stock Ticker allows Stored XSS.This issue affects Stock Ticker: from n/a through 3.23.4.
nvd
Aleksandar Uro Evi Stock Ticker vulnerabilities | cvebase