Vulnerabilities > Admidio > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-11-22 | CVE-2023-47380 | Cross-site Scripting vulnerability in Admidio 4.2.12 Admidio v4.2.12 and below is vulnerable to Cross Site Scripting (XSS). | 6.1 |
| 2023-08-06 | CVE-2023-4190 | Insufficient Session Expiration vulnerability in Admidio Insufficient Session Expiration in GitHub repository admidio/admidio prior to 4.2.11. | 6.5 |
| 2023-06-23 | CVE-2023-3304 | Unspecified vulnerability in Admidio Improper Access Control in GitHub repository admidio/admidio prior to 4.2.9. | 5.4 |
| 2023-06-05 | CVE-2023-3109 | Cross-site Scripting vulnerability in Admidio Cross-site Scripting (XSS) - Stored in GitHub repository admidio/admidio prior to 4.2.8. | 5.4 |
| 2022-03-19 | CVE-2022-0991 | Insufficient Session Expiration vulnerability in Admidio Insufficient Session Expiration in GitHub repository admidio/admidio prior to 4.1.9. | 6.4 |
| 2021-12-07 | CVE-2021-43810 | Cross-site Scripting vulnerability in Admidio Admidio is a free open source user management system for websites of organizations and groups. | 4.3 |
| 2021-05-20 | CVE-2021-32630 | Unrestricted Upload of File with Dangerous Type vulnerability in Admidio Admidio is a free, open source user management system for websites of organizations and groups. | 6.5 |
| 2020-04-24 | CVE-2020-11004 | SQL Injection vulnerability in Admidio SQL Injection was discovered in Admidio before version 3.3.13. | 5.0 |
| 2008-11-24 | CVE-2008-5209 | Path Traversal vulnerability in Admidio 1.4.8 Directory traversal vulnerability in modules/download/get_file.php in Admidio 1.4.8 allows remote attackers to read arbitrary files via a .. | 5.0 |