Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
opencats opencats vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv3
CVE-2023-27294
Improper neutralization of input during web page generation allows an authenticated attacker with access to a restricted account to submit malicious Javascript as the description for a calendar event, which would then be executed in other users' browsers if they browse to th...
Opencats Opencats 0.9.6
6.1
CVSSv3
CVE-2022-43014
OpenCATS v0.9.6 exists to contain a reflected cross-site scripting (XSS) vulnerability via the joborderID parameter.
Opencats Opencats 0.9.6
6.1
CVSSv3
CVE-2022-43015
OpenCATS v0.9.6 exists to contain a reflected cross-site scripting (XSS) vulnerability via the entriesPerPage parameter.
Opencats Opencats 0.9.6
6.1
CVSSv3
CVE-2022-43018
OpenCATS v0.9.6 exists to contain a reflected cross-site scripting (XSS) vulnerability via the email parameter in the Check Email function.
Opencats Opencats 0.9.6
6.5
CVSSv3
CVE-2022-43020
OpenCATS v0.9.6 exists to contain a SQL injection vulnerability via the tag_id variable in the Tag update function.
Opencats Opencats 0.9.6
6.5
CVSSv3
CVE-2022-43022
OpenCATS v0.9.6 exists to contain a SQL injection vulnerability via the tag_id variable in the Tag deletion function.
Opencats Opencats 0.9.6
6.5
CVSSv3
CVE-2022-43023
OpenCATS v0.9.6 exists to contain a SQL injection vulnerability via the importID parameter in the Import viewerrors function.
Opencats Opencats 0.9.6
5.4
CVSSv3
CVE-2023-26846
A stored cross-site scripting (XSS) vulnerability in OpenCATS v0.9.7 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload injected into the city parameter at opencats/index.php?m=candidates.
Opencats Opencats 0.9.7
3 Github repositories
5.4
CVSSv3
CVE-2023-26847
A stored cross-site scripting (XSS) vulnerability in OpenCATS v0.9.7 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload injected into the state parameter at opencats/index.php?m=candidates.
Opencats Opencats 0.9.7
3 Github repositories
4.3
CVSSv3
CVE-2023-26845
A Cross-Site Request Forgery (CSRF) in OpenCATS 0.9.7 allows malicious users to force users into submitting web requests via unspecified vectors.
Opencats Opencats 0.9.7
3 Github repositories
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »