Vulnerabilities > Dino

DATE	CVE	VULNERABILITY TITLE	RISK
2023-03-24	CVE-2023-28686	Authorization Bypass Through User-Controlled Key vulnerability in multiple products Dino before 0.2.3, 0.3.x before 0.3.2, and 0.4.x before 0.4.2 allows attackers to modify the personal bookmark store via a crafted message. network low complexity dino fedoraproject debian CWE-639	7.1
2021-06-07	CVE-2021-33896	Path Traversal vulnerability in multiple products Dino before 0.1.2 and 0.2.x before 0.2.1 allows Directory Traversal (only for creation of new files) via URI-encoded path separators. network low complexity dino fedoraproject CWE-22	5.3
2019-09-11	CVE-2019-16237	Origin Validation Error vulnerability in multiple products Dino before 2019-09-10 does not properly check the source of an MAM message in module/xep/0313_message_archive_management.vala. network low complexity dino canonical fedoraproject debian CWE-346	7.5
2019-09-11	CVE-2019-16236	Missing Authorization vulnerability in multiple products Dino before 2019-09-10 does not check roster push authorization in module/roster/module.vala. network low complexity dino canonical fedoraproject debian CWE-862	7.5
2019-09-11	CVE-2019-16235	Origin Validation Error vulnerability in multiple products Dino before 2019-09-10 does not properly check the source of a carbons message in module/xep/0280_message_carbons.vala. network low complexity dino canonical fedoraproject debian CWE-346	7.5

Vulnerabilities > Dino {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Dino"}]}