Vulnerabilities > Answer > Medium

DATE CVE VULNERABILITY TITLE RISK
2023-08-03 CVE-2023-4124 Missing Authorization vulnerability in Answer
Missing Authorization in GitHub repository answerdev/answer prior to v1.1.1.
network
low complexity
answer CWE-862
6.5
2023-08-03 CVE-2023-4127 Race Condition within a Thread vulnerability in Answer
Race Condition within a Thread in GitHub repository answerdev/answer prior to v1.1.1.
network
high complexity
answer CWE-366
5.9
2023-03-21 CVE-2023-1535 Cross-site Scripting vulnerability in Answer
Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.7.
network
low complexity
answer CWE-79
5.4
2023-03-21 CVE-2023-1536 Cross-site Scripting vulnerability in Answer
Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.7.
network
low complexity
answer CWE-79
5.4
2023-03-21 CVE-2023-1538 Information Exposure Through Discrepancy vulnerability in Answer
Observable Timing Discrepancy in GitHub repository answerdev/answer prior to 1.0.6.
network
low complexity
answer CWE-203
5.3
2023-03-21 CVE-2023-1539 Improper Restriction of Excessive Authentication Attempts vulnerability in Answer
Improper Restriction of Excessive Authentication Attempts in GitHub repository answerdev/answer prior to 1.0.6.
network
low complexity
answer CWE-307
5.3
2023-03-21 CVE-2023-1540 Information Exposure Through Discrepancy vulnerability in Answer
Observable Response Discrepancy in GitHub repository answerdev/answer prior to 1.0.6.
network
low complexity
answer CWE-203
5.3
2023-03-21 CVE-2023-1542 Unspecified vulnerability in Answer
Business Logic Errors in GitHub repository answerdev/answer prior to 1.0.6.
network
low complexity
answer
5.4
2023-03-07 CVE-2023-1237 Cross-site Scripting vulnerability in Answer
Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.6.
network
low complexity
answer CWE-79
5.4
2023-03-07 CVE-2023-1238 Cross-site Scripting vulnerability in Answer
Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.6.
network
low complexity
answer CWE-79
5.4