Vulnerabilities > Bitrix24 > Critical

DATE CVE VULNERABILITY TITLE RISK
2023-11-01 CVE-2023-1716 Cross-site Scripting vulnerability in Bitrix24 22.0.300
Cross-site scripting (XSS) vulnerability in Invoice Edit Page in Bitrix24 22.0.300 allows attackers to execute arbitrary JavaScript code in the victim's browser, and possibly execute arbitrary PHP code on the server if the victim has administrator privilege.
network
low complexity
bitrix24 CWE-79
critical
 9.6
9.6
2023-11-01 CVE-2023-1717 Unspecified vulnerability in Bitrix24 22.0.300
Prototype pollution in bitrix/templates/bitrix24/components/bitrix/menu/left_vertical/script.js in Bitrix24 22.0.300 allows remote attackers to execute arbitrary JavaScript code in the victim’s browser, and possibly execute arbitrary PHP code on the server if the victim has administrator privilege, via polluting `__proto__[tag]` and `__proto__[text]`.
network
low complexity
bitrix24
critical
 9.6
9.6
2023-11-01 CVE-2023-1719 Improper Initialization vulnerability in Bitrix24 22.0.300
Global variable extraction in bitrix/modules/main/tools.php in Bitrix24 22.0.300 allows unauthenticated remote attackers to (1) enumerate attachments on the server and (2) execute arbitrary JavaScript code in the victim's browser, and possibly execute arbitrary PHP code on the server if the victim has administrator privilege, via overwriting uninitialised variables.
network
low complexity
bitrix24 CWE-665
critical
 9.8
9.8
2022-03-22 CVE-2022-27228 Improper Input Validation vulnerability in Bitrix24 20.0.0/20.0.975
In the vote (aka "Polls, Votes") module before 21.0.100 of Bitrix Site Manager, a remote unauthenticated attacker can execute arbitrary code.
network
low complexity
bitrix24 CWE-20
critical
 9.8
9.8
2020-06-24 CVE-2020-13484 Server-Side Request Forgery (SSRF) vulnerability in Bitrix24 20.0.0/20.0.975
Bitrix24 through 20.0.975 allows SSRF via an intranet IP address in the services/main/ajax.php?action=attachUrlPreview url parameter, if the destination URL hosts an HTML document containing '<meta name="og:image" content="' followed by an intranet URL.
network
low complexity
bitrix24 CWE-918
critical
 9.8
9.8