Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
diagrams drawio vulnerabilities and exploits
(subscribe to this query)
516
VMScore
CVE-2022-1774
Exposure of Sensitive Information to an Unauthorized Actor in GitHub repository jgraph/drawio before 18.0.7.
Diagrams Drawio
312
VMScore
CVE-2022-2015
Cross-site Scripting (XSS) - Stored in GitHub repository jgraph/drawio before 19.0.2.
Diagrams Drawio
445
VMScore
CVE-2022-1713
SSRF on /proxy in GitHub repository jgraph/drawio before 18.0.4. An attacker can make a request as the server and read its contents. This can lead to a leak of sensitive information.
Diagrams Drawio
445
VMScore
CVE-2022-1815
Exposure of Sensitive Information to an Unauthorized Actor in GitHub repository jgraph/drawio before 18.1.2.
Diagrams Drawio
NA
CVE-2022-3873
Cross-site Scripting (XSS) - DOM in GitHub repository jgraph/drawio before 20.5.2.
Diagrams Drawio
NA
CVE-2022-3223
Cross-site Scripting (XSS) - Stored in GitHub repository jgraph/drawio before 20.3.1.
Diagrams Drawio
445
VMScore
CVE-2022-1711
Server-Side Request Forgery (SSRF) in GitHub repository jgraph/drawio before 18.0.5.
Diagrams Drawio
445
VMScore
CVE-2022-1723
Server-Side Request Forgery (SSRF) in GitHub repository jgraph/drawio before 18.0.6.
Diagrams Drawio
445
VMScore
CVE-2022-1784
Server-Side Request Forgery (SSRF) in GitHub repository jgraph/drawio before 18.0.8.
Diagrams Drawio
NA
CVE-2023-3398
Denial of Service in GitHub repository jgraph/drawio before 18.1.3.
Diagrams Drawio
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
HTML injection
CVE-2024-35894
SQL
CVE-2024-5105
CVE-2014-100005
CVE-2024-35895
unauthorized
CVE-2024-22120
CVE-2024-35890
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »