Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
dradis vulnerabilities and exploits
(subscribe to this query)
312
VMScore
CVE-2019-5925
Cross-site scripting vulnerability in Dradis Community Edition Dradis Community Edition v3.11 and previous versions and Dradis Professional Edition v3.1.1 and previous versions allow remote authenticated malicious users to inject arbitrary web script or HTML via unspecified vecto...
Dradisframework Dradis
NA
CVE-2023-31223
Dradis prior to 4.8.0 allows persistent XSS by authenticated author users, related to avatars.
Dradisframework Dradis
383
VMScore
CVE-2022-30028
Dradis Professional Edition prior to 4.3.0 allows malicious users to change an account password via reusing a password reset token.
Dradisframework Dradis
356
VMScore
CVE-2019-19946
The API in Dradis Pro 3.4.1 allows any user to extract the content of a project, even if this user is not part of the project team.
Dradisframework Dradis 3.4.1
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started