Vulnerabilities > Dhis2

DATE	CVE	VULNERABILITY TITLE	RISK
2023-05-09	CVE-2023-31138	Incorrect Authorization vulnerability in Dhis2 Dhis 2 DHIS2 Core contains the service layer and Web API for DHIS2, an information system for data capture. network low complexity dhis2 CWE-863	6.5
2023-05-09	CVE-2023-31139	Insufficient Session Expiration vulnerability in Dhis2 Dhis 2 DHIS2 Core contains the service layer and Web API for DHIS2, an information system for data capture. network low complexity dhis2 CWE-613	7.5
2023-05-09	CVE-2023-32060	Incorrect Authorization vulnerability in Dhis2 Dhis 2 DHIS2 Core contains the service layer and Web API for DHIS2, an information system for data capture. network low complexity dhis2 CWE-863	6.5
2022-12-08	CVE-2022-41947	Cross-site Scripting vulnerability in Dhis2 Dhis 2 DHIS 2 is an open source information system for data capture, management, validation, analytics and visualization. network low complexity dhis2 CWE-79	5.4
2022-12-08	CVE-2022-41948	Improper Privilege Management vulnerability in Dhis2 Dhis 2 DHIS 2 is an open source information system for data capture, management, validation, analytics and visualization. network low complexity dhis2 CWE-269	7.2
2022-12-08	CVE-2022-41949	Server-Side Request Forgery (SSRF) vulnerability in Dhis2 Dhis 2 DHIS 2 is an open source information system for data capture, management, validation, analytics and visualization. network low complexity dhis2 CWE-918	4.3
2022-06-01	CVE-2022-24848	SQL Injection vulnerability in Dhis2 Dhis 2 DHIS2 is an information system for data capture, management, validation, analytics and visualization. network low complexity dhis2 CWE-89	8.8
2021-11-01	CVE-2021-41187	SQL Injection vulnerability in Dhis2 Dhis 2 DHIS 2 is an information system for data capture, management, validation, analytics and visualization. network low complexity dhis2 CWE-89	8.8
2021-10-29	CVE-2021-39179	SQL Injection vulnerability in Dhis2 Dhis 2 DHIS 2 is an information system for data capture, management, validation, analytics and visualization. network low complexity dhis2 CWE-89	8.8
2021-06-24	CVE-2021-32704	SQL Injection vulnerability in Dhis2 Dhis 2 DHIS 2 is an information system for data capture, management, validation, analytics and visualization. network low complexity dhis2 CWE-89	8.8

Vulnerabilities > Dhis2 {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Dhis2"}]}

Vulnerabilities > Dhis2