Vulnerabilities > Cern > Indico

DATE CVE VULNERABILITY TITLE RISK
2024-09-04 CVE-2024-45399 Cross-site Scripting vulnerability in Cern Indico
Indico is an event management system that uses Flask-Multipass, a multi-backend authentication system for Flask.
network
low complexity
cern CWE-79
6.1
6.1
2023-07-21 CVE-2023-37901 Unspecified vulnerability in Cern Indico
Indico is an open source a general-purpose, web based event management tool.
network
low complexity
cern
5.4
5.4
2021-04-07 CVE-2021-30185 Unspecified vulnerability in Cern Indico
CERN Indico before 2.3.4 can use an attacker-supplied Host header in a password reset link.
network
low complexity
cern
7.5
7.5