Vulnerabilities > Answer > Critical

DATE CVE VULNERABILITY TITLE RISK
2023-03-21 CVE-2023-1537 Authentication Bypass by Capture-replay vulnerability in Answer
Authentication Bypass by Capture-replay in GitHub repository answerdev/answer prior to 1.0.6.
network
low complexity
answer CWE-294
critical
9.8
2023-02-08 CVE-2023-0740 Cross-site Scripting vulnerability in Answer
Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.4.
network
low complexity
answer CWE-79
critical
9.0
2023-02-08 CVE-2023-0741 Cross-site Scripting vulnerability in Answer
Cross-site Scripting (XSS) - DOM in GitHub repository answerdev/answer prior to 1.0.4.
network
low complexity
answer CWE-79
critical
9.0
2023-02-08 CVE-2023-0742 Cross-site Scripting vulnerability in Answer
Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.4.
network
low complexity
answer CWE-79
critical
9.0
2023-02-08 CVE-2023-0743 Cross-site Scripting vulnerability in Answer
Cross-site Scripting (XSS) - Generic in GitHub repository answerdev/answer prior to 1.0.4.
network
low complexity
answer CWE-79
critical
9.0
2023-02-08 CVE-2023-0744 Unspecified vulnerability in Answer
Improper Access Control in GitHub repository answerdev/answer prior to 1.0.4.
network
low complexity
answer
critical
9.8