Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
opencats opencats vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-27295
Cross-site request forgery is facilitated by OpenCATS failure to require CSRF tokens in POST requests. An attacker can exploit this issue by creating a dummy page that executes Javascript in an authenticated user's session when visited.
Opencats Opencats 0.9.6
NA
CVE-2022-48011
Opencats v0.9.7 exists to contain a SQL injection vulnerability via the importID parameter in the Import viewerrors function.
Opencats Opencats 0.9.7
NA
CVE-2022-48012
Opencats v0.9.7 exists to contain a reflected cross-site scripting (XSS) vulnerability via the component /opencats/index.php?m=settings&a=ajax_tags_upd.
Opencats Opencats 0.9.7
NA
CVE-2022-48013
Opencats v0.9.7 exists to contain a stored cross-site scripting (XSS) vulnerability in the component /opencats/index.php?m=calendar. This vulnerability allows malicious users to execute arbitrary web scripts or HTML via a crafted payload injected into the Description or Title tex...
Opencats Opencats 0.9.7
NA
CVE-2022-43014
OpenCATS v0.9.6 exists to contain a reflected cross-site scripting (XSS) vulnerability via the joborderID parameter.
Opencats Opencats 0.9.6
NA
CVE-2022-43015
OpenCATS v0.9.6 exists to contain a reflected cross-site scripting (XSS) vulnerability via the entriesPerPage parameter.
Opencats Opencats 0.9.6
NA
CVE-2022-43016
OpenCATS v0.9.6 exists to contain a reflected cross-site scripting (XSS) vulnerability via the callback component.
Opencats Opencats 0.9.6
NA
CVE-2022-43017
OpenCATS v0.9.6 exists to contain a reflected cross-site scripting (XSS) vulnerability via the indexFile component.
Opencats Opencats 0.9.6
NA
CVE-2022-43018
OpenCATS v0.9.6 exists to contain a reflected cross-site scripting (XSS) vulnerability via the email parameter in the Check Email function.
Opencats Opencats 0.9.6
NA
CVE-2022-43019
OpenCATS v0.9.6 exists to contain a remote code execution (RCE) vulnerability via the getDataGridPager's ajax functionality.
Opencats Opencats 0.9.6
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
firmware
CVE-2023-52866
CVE-2024-4367
CVE-2024-1721
CVE-2023-34992
XML injection
CVE-2023-52817
SQL
CVE-2023-52855
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »