Vulnerabilities > Codeigniter > Medium

DATE CVE VULNERABILITY TITLE RISK
2023-11-24 CVE-2023-48707 Unspecified vulnerability in Codeigniter Shield 1.0.0
CodeIgniter Shield is an authentication and authorization provider for CodeIgniter 4.
network
low complexity
codeigniter
6.5
6.5
2023-11-24 CVE-2023-48708 Unspecified vulnerability in Codeigniter Shield 1.0.0
CodeIgniter Shield is an authentication and authorization provider for CodeIgniter 4.
network
low complexity
codeigniter
6.5
6.5
2023-03-13 CVE-2023-27580 Unspecified vulnerability in Codeigniter Shield 1.0.0
CodeIgniter Shield provides authentication and authorization for the CodeIgniter 4 PHP framework.
network
high complexity
codeigniter
5.9
5.9
2022-10-06 CVE-2022-39284 Incorrect Permission Assignment for Critical Resource vulnerability in Codeigniter
CodeIgniter is a PHP full-stack web framework.
network
low complexity
codeigniter CWE-732
4.3
4.3
2022-01-24 CVE-2022-21715 Cross-site Scripting vulnerability in Codeigniter
CodeIgniter4 is the 4.x branch of CodeIgniter, a PHP full-stack web framework.
network
low complexity
codeigniter CWE-79
6.1
6.1
2020-01-09 CVE-2012-1915 Cross-site Scripting vulnerability in Codeigniter
EllisLab CodeIgniter 2.1.2 allows remote attackers to bypass the xss_clean() Filter and perform XSS attacks.
network
low complexity
codeigniter CWE-79
6.1
6.1
2018-02-21 CVE-2013-4891 Cross-site Scripting vulnerability in Codeigniter
The xss_clean function in CodeIgniter before 2.1.4 might allow remote attackers to bypass an intended protection mechanism and conduct cross-site scripting (XSS) attacks via an unclosed HTML tag.
network
low complexity
codeigniter CWE-79
6.1
6.1