Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
wallabag wallabag vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv3
CVE-2023-0610
Improper Authorization in GitHub repository wallabag/wallabag before 2.5.3.
Wallabag Wallabag
5.3
CVSSv3
CVE-2023-0734
Improper Authorization in GitHub repository wallabag/wallabag before 2.5.4.
Wallabag Wallabag
5.4
CVSSv3
CVE-2023-0736
Cross-site Scripting (XSS) - Stored in GitHub repository wallabag/wallabag before 2.5.4.
Wallabag Wallabag
5.7
CVSSv3
CVE-2023-4454
Cross-Site Request Forgery (CSRF) in GitHub repository wallabag/wallabag before 2.6.3.
Wallabag Wallabag
6.5
CVSSv3
CVE-2023-4455
Cross-Site Request Forgery (CSRF) in GitHub repository wallabag/wallabag before 2.6.3.
Wallabag Wallabag
4
CVSSv3
CVE-2018-11352
The Wallabag application 2.2.3 to 2.3.2 is affected by one cross-site scripting (XSS) vulnerability that is stored within the configuration page. This vulnerability enables the execution of a JavaScript payload each time an administrator visits the configuration page. The vulnera...
Wallabag Wallabag
4.3
CVSSv3
CVE-2023-0609
Improper Authorization in GitHub repository wallabag/wallabag before 2.5.3.
Wallabag Wallabag
6.5
CVSSv3
CVE-2023-0735
Cross-Site Request Forgery (CSRF) in GitHub repository wallabag/wallabag before 2.5.4.
Wallabag Wallabag
6.5
CVSSv3
CVE-2023-3566
A vulnerability was found in wallabag 2.5.4. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /config of the component Profile Config. The manipulation of the argument Name leads to allocation of resources. The exploit ha...
Wallabag Wallabag 2.5.4
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
firmware
CVE-2006-4304
CVE-2024-32878
CVE-2024-31502
XSS
CVE-2024-3059
CVE-2024-33692
CVE-2024-3400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started