Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
opencats opencats vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2021-25294
OpenCATS up to and including 0.9.5-3 unsafely deserializes index.php?m=activity requests, leading to remote code execution. This occurs because lib/DataGrid.php calls unserialize for the parametersactivity:ActivityDataGrid parameter. The PHP object injection exploit chain can lev...
Opencats Opencats
4.3
CVSSv2
CVE-2021-25295
OpenCATS up to and including 0.9.5-3 has multiple Cross-site Scripting (XSS) issues.
Opencats Opencats
5
CVSSv2
CVE-2019-13358
lib/DocumentToText.php in OpenCats prior to 0.9.4-3 has XXE that allows remote users to read files on the underlying operating system. The attacker must upload a file in the docx or odt format.
Opencats Opencats
3 Github repositories
10
CVSSv2
CVE-2021-41560
OpenCATS up to and including 0.9.6 allows remote malicious users to execute arbitrary code by uploading an executable file via lib/FileUtility.php.
Opencats Opencats
1 Github repository
NA
CVE-2022-43014
OpenCATS v0.9.6 exists to contain a reflected cross-site scripting (XSS) vulnerability via the joborderID parameter.
Opencats Opencats 0.9.6
NA
CVE-2022-43016
OpenCATS v0.9.6 exists to contain a reflected cross-site scripting (XSS) vulnerability via the callback component.
Opencats Opencats 0.9.6
NA
CVE-2022-43017
OpenCATS v0.9.6 exists to contain a reflected cross-site scripting (XSS) vulnerability via the indexFile component.
Opencats Opencats 0.9.6
NA
CVE-2022-43019
OpenCATS v0.9.6 exists to contain a remote code execution (RCE) vulnerability via the getDataGridPager's ajax functionality.
Opencats Opencats 0.9.6
NA
CVE-2022-43020
OpenCATS v0.9.6 exists to contain a SQL injection vulnerability via the tag_id variable in the Tag update function.
Opencats Opencats 0.9.6
NA
CVE-2022-43022
OpenCATS v0.9.6 exists to contain a SQL injection vulnerability via the tag_id variable in the Tag deletion function.
Opencats Opencats 0.9.6
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
privilege escalation
CVE-2024-20696
CVE-2024-29829
CVE-2024-33999
CVE-2024-35646
physical
CVE-2024-24919
CVE-2024-31030
local users
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »