Vulnerabilities > Anji Plus > AJ Report > 0.9.8.6

DATE CVE VULNERABILITY TITLE RISK
2023-03-03 CVE-2022-46973 Server-Side Request Forgery (SSRF) vulnerability in Anji-Plus Aj-Report 0.9.8.6
Report v0.9.8.6 was discovered to contain a Server-Side Request Forgery (SSRF) vulnerability.
network
low complexity
anji-plus CWE-918
critical
 9.8
9.8
2022-10-17 CVE-2022-42983 Authentication Bypass by Spoofing vulnerability in Anji-Plus Aj-Report 0.9.8.6
anji-plus AJ-Report 0.9.8.6 allows remote attackers to bypass login authentication by spoofing JWT Tokens.
network
low complexity
anji-plus CWE-290
8.8
8.8