Froxlor Froxlor vulnerabilities
25 known vulnerabilities affecting froxlor/froxlor_froxlor.
Total CVEs
25
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
CRITICAL2HIGH9MEDIUM13LOW1
Vulnerabilities
Page 2 of 2
CVE-2023-5564P4MEDIUMCVSS 4.8≥ unspecified, < 2.1.0-dev12023-10-13
CVE-2023-5564 [MEDIUM] CWE-79 CVE-2023-5564: Cross-site Scripting (XSS) - Stored in GitHub repository froxlor/froxlor prior to 2.1.0-dev1.
Cross-site Scripting (XSS) - Stored in GitHub repository froxlor/froxlor prior to 2.1.0-dev1.
nvd
CVE-2022-4868P4MEDIUMCVSS 4.3≥ unspecified, < 2.0.0-beta12022-12-31
CVE-2022-4868 [MEDIUM] CWE-285 CVE-2022-4868: Improper Authorization in GitHub repository froxlor/froxlor prior to 2.0.0-beta1.
Improper Authorization in GitHub repository froxlor/froxlor prior to 2.0.0-beta1.
nvd
CVE-2022-4867P4MEDIUMCVSS 4.3≥ unspecified, < 2.0.0-beta12022-12-31
CVE-2022-4867 [MEDIUM] CWE-352 CVE-2022-4867: Cross-Site Request Forgery (CSRF) in GitHub repository froxlor/froxlor prior to 2.0.0-beta1.
Cross-Site Request Forgery (CSRF) in GitHub repository froxlor/froxlor prior to 2.0.0-beta1.
nvd
CVE-2023-0566P4MEDIUMCVSS 4.8≥ unspecified, < 2.0.102023-01-29
CVE-2023-0566 [MEDIUM] CWE-79 CVE-2023-0566: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in froxlor/frox
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in froxlor/froxlor prior to 2.0.10.
nvd
CVE-2023-4304P4LOWCVSS 2.7≥ unspecified, < 2.0.22,2.1.02023-08-11
CVE-2023-4304 [LOW] CWE-840 CVE-2023-4304: Business Logic Errors in GitHub repository froxlor/froxlor prior to 2.0.22,2.1.0.
Business Logic Errors in GitHub repository froxlor/froxlor prior to 2.0.22,2.1.0.
nvd
← Previous2 / 2