Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
dradis vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv3
CVE-2019-5925
Cross-site scripting vulnerability in Dradis Community Edition Dradis Community Edition v3.11 and previous versions and Dradis Professional Edition v3.1.1 and previous versions allow remote authenticated malicious users to inject arbitrary web script or HTML via unspecified vecto...
Dradisframework Dradis
5.4
CVSSv3
CVE-2023-31223
Dradis prior to 4.8.0 allows persistent XSS by authenticated author users, related to avatars.
Dradisframework Dradis
5.9
CVSSv3
CVE-2022-30028
Dradis Professional Edition prior to 4.3.0 allows malicious users to change an account password via reusing a password reset token.
Dradisframework Dradis
6.5
CVSSv3
CVE-2019-19946
The API in Dradis Pro 3.4.1 allows any user to extract the content of a project, even if this user is not part of the project team.
Dradisframework Dradis 3.4.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-2907
hardcoded
inject
CVE-2024-20359
CVE-2024-2467
CVE-2024-4077
CVE-2024-22391
camera
CVE-2024-20353
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started