Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
froxlor froxlor vulnerabilities and exploits
(subscribe to this query)
445
VMScore
CVE-2015-5959
Froxlor prior to 0.9.33.2 with the default configuration/setup might allow remote malicious users to obtain the database password by reading /logs/sql-error.log.
Froxlor Froxlor
NA
CVE-2023-0564
Weak Password Requirements in GitHub repository froxlor/froxlor before 2.0.10.
Froxlor Froxlor
NA
CVE-2023-0565
Business Logic Errors in GitHub repository froxlor/froxlor before 2.0.10.
Froxlor Froxlor
NA
CVE-2023-0566
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in froxlor/froxlor before 2.0.10.
Froxlor Froxlor
NA
CVE-2023-0572
Unchecked Error Condition in GitHub repository froxlor/froxlor before 2.0.10.
Froxlor Froxlor
NA
CVE-2023-0671
Code Injection in GitHub repository froxlor/froxlor before 2.0.10.
Froxlor Froxlor
NA
CVE-2023-3668
Improper Encoding or Escaping of Output in GitHub repository froxlor/froxlor before 2.0.21.
Froxlor Froxlor
NA
CVE-2022-3721
Code Injection in GitHub repository froxlor/froxlor before 0.10.39.
Froxlor Froxlor
578
VMScore
CVE-2018-1000527
Froxlor version <= 0.9.39.5 contains a PHP Object Injection vulnerability in Domain name form that can result in Possible information disclosure and remote code execution. This attack appear to be exploitable via Passing malicious PHP objection in $_POST['ssl_ipandport...
Froxlor Froxlor
445
VMScore
CVE-2018-12642
Froxlor up to and including 0.9.39.5 has Incorrect Access Control for tickets not owned by the current user.
Froxlor Froxlor
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »