Vulnerabilities > Diagrams > High

DATE CVE VULNERABILITY TITLE RISK
2023-06-26 CVE-2023-3398 Resource Exhaustion vulnerability in Diagrams Drawio
Denial of Service in GitHub repository jgraph/drawio prior to 18.1.3.
network
low complexity
diagrams CWE-400
7.5
7.5
2022-05-18 CVE-2022-1767 Server-Side Request Forgery (SSRF) vulnerability in Diagrams Drawio
Server-Side Request Forgery (SSRF) in GitHub repository jgraph/drawio prior to 18.0.7.
network
low complexity
diagrams CWE-918
7.5
7.5
2022-05-18 CVE-2022-1727 Improper Input Validation vulnerability in Diagrams Drawio
Improper Input Validation in GitHub repository jgraph/drawio prior to 18.0.6.
network
low complexity
diagrams CWE-20
8.8
8.8
2022-05-16 CVE-2022-1713 Server-Side Request Forgery (SSRF) vulnerability in Diagrams Drawio
SSRF on /proxy in GitHub repository jgraph/drawio prior to 18.0.4.
network
low complexity
diagrams CWE-918
7.5
7.5
2022-05-16 CVE-2022-1721 Path Traversal vulnerability in Diagrams Drawio
Path Traversal in WellKnownServlet in GitHub repository jgraph/drawio prior to 18.0.5.
network
low complexity
diagrams CWE-22
7.5
7.5