Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
dradis vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv3
CVE-2019-5925
Cross-site scripting vulnerability in Dradis Community Edition Dradis Community Edition v3.11 and previous versions and Dradis Professional Edition v3.1.1 and previous versions allow remote authenticated malicious users to inject arbitrary web script or HTML via unspecified vecto...
Dradisframework Dradis
5.4
CVSSv3
CVE-2023-31223
Dradis prior to 4.8.0 allows persistent XSS by authenticated author users, related to avatars.
Dradisframework Dradis
5.9
CVSSv3
CVE-2022-30028
Dradis Professional Edition prior to 4.3.0 allows malicious users to change an account password via reusing a password reset token.
Dradisframework Dradis
6.5
CVSSv3
CVE-2019-19946
The API in Dradis Pro 3.4.1 allows any user to extract the content of a project, even if this user is not part of the project team.
Dradisframework Dradis 3.4.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48693
CVE-2024-30851
CVE-2024-34460
CVE-2024-2887
local
CVE-2024-27956
remote code execution
CVE-2024-34475
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started