Hogash Kallyas vulnerabilities
5 known vulnerabilities affecting hogash/kallyas.
Total CVEs
5
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1MEDIUM4
Vulnerabilities
Page 1 of 1
CVE-2025-62016P2CRITICALCVSS 9.9≤ 4.22.02025-11-06
CVE-2025-62016 [CRITICAL] CWE-434 CVE-2025-62016: Unrestricted Upload of File with Dangerous Type vulnerability in hogash KALLYAS kallyas.This issue a
Unrestricted Upload of File with Dangerous Type vulnerability in hogash KALLYAS kallyas.This issue affects KALLYAS: from n/a through <= 4.22.0.
nvd
CVE-2025-62017P4MEDIUMCVSS 5.4≤ 4.22.02025-11-06
CVE-2025-62017 [MEDIUM] CWE-862 CVE-2025-62017: Missing Authorization vulnerability in hogash KALLYAS kallyas.This issue affects KALLYAS: from n/a t
Missing Authorization vulnerability in hogash KALLYAS kallyas.This issue affects KALLYAS: from n/a through <= 4.22.0.
nvd
CVE-2025-62018P4MEDIUMCVSS 5.3≤ 4.22.02025-11-06
CVE-2025-62018 [MEDIUM] CWE-862 CVE-2025-62018: Missing Authorization vulnerability in hogash KALLYAS kallyas.This issue affects KALLYAS: from n/a t
Missing Authorization vulnerability in hogash KALLYAS kallyas.This issue affects KALLYAS: from n/a through <= 4.22.0.
nvd
CVE-2025-63061P4MEDIUMCVSS 6.5≤ 4.25.02025-12-09
CVE-2025-63061 [MEDIUM] CWE-79 CVE-2025-63061: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability i
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in hogash KALLYAS kallyas allows DOM-Based XSS.This issue affects KALLYAS: from n/a through < 4.25.0.
nvd
CVE-2025-63060P4MEDIUMCVSS 4.3≤ 4.25.02025-12-09
CVE-2025-63060 [MEDIUM] CWE-352 CVE-2025-63060: Cross-Site Request Forgery (CSRF) vulnerability in hogash KALLYAS kallyas allows Cross Site Request
Cross-Site Request Forgery (CSRF) vulnerability in hogash KALLYAS kallyas allows Cross Site Request Forgery.This issue affects KALLYAS: from n/a through < 4.25.0.
nvd