Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
freetakserver-ui project freetakserver-ui 1.9.8 vulnerabilities and exploits
(subscribe to this query)
578
VMScore
CVE-2022-25510
FreeTAKServer 1.9.8 contains a hardcoded Flask secret key which allows malicious users to create crafted cookies to bypass authentication or escalate privileges.
Freetakserver-ui Project Freetakserver-ui 1.9.8
356
VMScore
CVE-2022-25506
FreeTAKServer-UI v1.9.8 exists to contain a SQL injection vulnerability via the API endpoint /AuthenticateUser.
Freetakserver-ui Project Freetakserver-ui 1.9.8
445
VMScore
CVE-2022-25508
An access control issue in the component /ManageRoute/postRoute of FreeTAKServer v1.9.8 allows unauthenticated malicious users to cause a Denial of Service (DoS) via an unusually large amount of created routes, or create unsafe or false routes for legitimate users.
Freetakserver-ui Project Freetakserver-ui 1.9.8
356
VMScore
CVE-2022-25511
An issue in the ?filename= argument of the route /DataPackageTable in FreeTAKServer-UI v1.9.8 allows malicious users to place arbitrary files anywhere on the system.
Freetakserver-ui Project Freetakserver-ui 1.9.8
445
VMScore
CVE-2022-25512
FreeTAKServer-UI v1.9.8 exists to leak sensitive API and Websocket keys.
Freetakserver-ui Project Freetakserver-ui 1.9.8
312
VMScore
CVE-2022-25507
FreeTAKServer-UI v1.9.8 exists to contain a stored cross-site scripting (XSS) vulnerability via the Callsign parameter.
Freetakserver-ui Project Freetakserver-ui 1.9.8
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started