Vulnerabilities > Admidio > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-11-22 | CVE-2023-47380 | Cross-site Scripting vulnerability in Admidio 4.2.12 Admidio v4.2.12 and below is vulnerable to Cross Site Scripting (XSS). | 6.1 |
| 2023-08-06 | CVE-2023-4190 | Unspecified vulnerability in Admidio Insufficient Session Expiration in GitHub repository admidio/admidio prior to 4.2.11. | 6.5 |
| 2023-06-23 | CVE-2023-3304 | Unspecified vulnerability in Admidio Improper Access Control in GitHub repository admidio/admidio prior to 4.2.9. | 5.4 |
| 2023-06-05 | CVE-2023-3109 | Cross-site Scripting vulnerability in Admidio Cross-site Scripting (XSS) - Stored in GitHub repository admidio/admidio prior to 4.2.8. | 5.4 |
| 2022-06-28 | CVE-2022-23896 | Cross-site Scripting vulnerability in Admidio Admidio 4.1.2 version is affected by stored cross-site scripting (XSS). | 5.4 |
| 2021-12-07 | CVE-2021-43810 | Unspecified vulnerability in Admidio Admidio is a free open source user management system for websites of organizations and groups. | 6.1 |
| 2017-05-16 | CVE-2017-8382 | Cross-Site Request Forgery (CSRF) vulnerability in Admidio 3.2.8 admidio 3.2.8 has CSRF in adm_program/modules/members/members_function.php with an impact of deleting arbitrary user accounts. | 4.5 |