Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
froxlor froxlor vulnerabilities and exploits
(subscribe to this query)
4.8
CVSSv3
CVE-2023-0566
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in froxlor/froxlor before 2.0.10.
Froxlor Froxlor
5.3
CVSSv3
CVE-2023-0572
Unchecked Error Condition in GitHub repository froxlor/froxlor before 2.0.10.
Froxlor Froxlor
6.5
CVSSv3
CVE-2022-3017
Cross-Site Request Forgery (CSRF) in GitHub repository froxlor/froxlor before 0.10.38.
Froxlor Froxlor
4.3
CVSSv3
CVE-2022-4867
Cross-Site Request Forgery (CSRF) in GitHub repository froxlor/froxlor before 2.0.0-beta1.
Froxlor Froxlor
4.3
CVSSv3
CVE-2022-4868
Improper Authorization in GitHub repository froxlor/froxlor before 2.0.0-beta1.
Froxlor Froxlor
8.8
CVSSv3
CVE-2023-0671
Code Injection in GitHub repository froxlor/froxlor before 2.0.10.
Froxlor Froxlor
9.8
CVSSv3
CVE-2021-42325
Froxlor up to and including 0.10.29.1 allows SQL injection in Database/Manager/DbManagerMySQL.php via a custom DB name.
Froxlor Froxlor
1 Github repository
5.4
CVSSv3
CVE-2023-4829
Cross-site Scripting (XSS) - Stored in GitHub repository froxlor/froxlor before 2.0.22.
Froxlor Froxlor
7.2
CVSSv3
CVE-2023-3668
Improper Encoding or Escaping of Output in GitHub repository froxlor/froxlor before 2.0.21.
Froxlor Froxlor
7.2
CVSSv3
CVE-2018-1000527
Froxlor version <= 0.9.39.5 contains a PHP Object Injection vulnerability in Domain name form that can result in Possible information disclosure and remote code execution. This attack appear to be exploitable via Passing malicious PHP objection in $_POST['ssl_ipandport...
Froxlor Froxlor
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37884
CVE-2024-6003
remote
brute force
information disclosure
CVE-2024-27801
CVE-2024-30078
CVE-2024-31870
CVE-2024-6042
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »