Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
opencats opencats 0.9.7 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-26845
A Cross-Site Request Forgery (CSRF) in OpenCATS 0.9.7 allows malicious users to force users into submitting web requests via unspecified vectors.
Opencats Opencats 0.9.7
3 Github repositories
NA
CVE-2023-26846
A stored cross-site scripting (XSS) vulnerability in OpenCATS v0.9.7 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload injected into the city parameter at opencats/index.php?m=candidates.
Opencats Opencats 0.9.7
3 Github repositories
NA
CVE-2023-26847
A stored cross-site scripting (XSS) vulnerability in OpenCATS v0.9.7 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload injected into the state parameter at opencats/index.php?m=candidates.
Opencats Opencats 0.9.7
3 Github repositories
NA
CVE-2022-48011
Opencats v0.9.7 exists to contain a SQL injection vulnerability via the importID parameter in the Import viewerrors function.
Opencats Opencats 0.9.7
NA
CVE-2022-48012
Opencats v0.9.7 exists to contain a reflected cross-site scripting (XSS) vulnerability via the component /opencats/index.php?m=settings&a=ajax_tags_upd.
Opencats Opencats 0.9.7
NA
CVE-2022-48013
Opencats v0.9.7 exists to contain a stored cross-site scripting (XSS) vulnerability in the component /opencats/index.php?m=calendar. This vulnerability allows malicious users to execute arbitrary web scripts or HTML via a crafted payload injected into the Description or Title tex...
Opencats Opencats 0.9.7
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
administrator privileges
CVE-2024-1579
hardcoded
CVE-2023-20198
CVE-2024-33587
CVE-2024-33449
CVE-2024-4308
HTML injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started