Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
shaarli project shaarli vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2018-5249
Cross-site scripting (XSS) vulnerability in Shaarli prior to 0.8.5 and 0.9.x prior to 0.9.3 allows remote malicious users to inject arbitrary code via the login form's username field (aka the login parameter to the ban_canLogin function in index.php).
Shaarli Project Shaarli
6.1
CVSSv3
CVE-2013-7351
Multiple cross-site scripting (XSS) vulnerabilities in index.php in Shaarli allow remote malicious users to inject arbitrary web script or HTML via the URL to the (1) showRSS, (2) showATOM, or (3) showDailyRSS function; a (4) file name to the importFile function; or (5) vectors r...
Shaarli Project Shaarli -
6.1
CVSSv3
CVE-2023-49469
Reflected Cross Site Scripting (XSS) vulnerability in Shaarli v0.12.2, allows remote malicious users to execute arbitrary code via search tag function.
Shaarli Project Shaarli 0.12.2
6.1
CVSSv3
CVE-2017-15215
Reflected XSS vulnerability in Shaarli v0.9.1 allows an unauthenticated malicious user to inject JavaScript via the searchtags parameter to index.php. If the victim is an administrator, an attacker can (for example) take over the admin session or change global settings or add/del...
Shaarli Project Shaarli 0.9.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started