Code4Recovery 12 Step Meeting List vulnerabilities
3 known vulnerabilities affecting code4recovery/12_step_meeting_list.
Total CVEs
3
CISA KEV
0
Public exploits
1
Exploited in wild
1
Severity breakdown
HIGH1MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2024-35693P1MEDIUMCVSS 6.1ExploitedPoCfixed in 3.14.342024-06-08
CVE-2024-35693 [MEDIUM] CWE-79 CVE-2024-35693: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability i
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in AA Web Servant 12 Step Meeting List 12-step-meeting-list.This issue affects 12 Step Meeting List: from n/a through <= 3.14.33.
nvd
CVE-2024-22296P3HIGHCVSS 8.8fixed in 3.14.292024-06-10
CVE-2024-22296 [HIGH] CWE-862 CVE-2024-22296: Missing Authorization vulnerability in Code for Recovery 12 Step Meeting List.This issue affects 12
Missing Authorization vulnerability in Code for Recovery 12 Step Meeting List.This issue affects 12 Step Meeting List: from n/a through 3.14.28.
nvd
CVE-2023-46641P4MEDIUMCVSS 5.4fixed in 3.14.252023-12-07
CVE-2023-46641 [MEDIUM] CWE-918 CVE-2023-46641: Server-Side Request Forgery (SSRF) vulnerability in Code for Recovery 12 Step Meeting List.This issu
Server-Side Request Forgery (SSRF) vulnerability in Code for Recovery 12 Step Meeting List.This issue affects 12 Step Meeting List: from n/a through 3.14.24.
nvd