Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
diagrams drawio vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2023-3975
OS Command Injection in GitHub repository jgraph/drawio before 21.5.0.
Diagrams Drawio
4.6
CVSSv3
CVE-2022-1730
Cross-site Scripting (XSS) - Stored in GitHub repository jgraph/drawio before 18.0.4.
Diagrams Drawio
5.4
CVSSv3
CVE-2022-3127
Cross-site Scripting (XSS) - Stored in GitHub repository jgraph/drawio before 20.2.8.
Diagrams Drawio
9.6
CVSSv3
CVE-2022-1575
Arbitrary Code Execution through Sanitizer Bypass in GitHub repository jgraph/drawio before 18.0.0. - Arbitrary (remote) code execution in the desktop app. - Stored XSS in the web app.
Diagrams Drawio
6.1
CVSSv3
CVE-2022-3223
Cross-site Scripting (XSS) - Stored in GitHub repository jgraph/drawio before 20.3.1.
Diagrams Drawio
6.1
CVSSv3
CVE-2022-3138
Cross-site Scripting (XSS) - Generic in GitHub repository jgraph/drawio before 20.3.0.
Diagrams Drawio
6.1
CVSSv3
CVE-2022-3148
Cross-site Scripting (XSS) - Generic in GitHub repository jgraph/drawio before 20.3.0.
Diagrams Drawio
7.5
CVSSv3
CVE-2022-1723
Server-Side Request Forgery (SSRF) in GitHub repository jgraph/drawio before 18.0.6.
Diagrams Drawio
6.1
CVSSv3
CVE-2023-3026
Cross-site Scripting (XSS) - Stored in GitHub repository jgraph/drawio before 21.2.8.
Diagrams Drawio
7.5
CVSSv3
CVE-2023-3398
Denial of Service in GitHub repository jgraph/drawio before 18.1.3.
Diagrams Drawio
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »