Vulnerabilities > Freshdns Project

DATE	CVE	VULNERABILITY TITLE	RISK
2018-12-20	CVE-2018-1000847	Cross-site Scripting vulnerability in Freshdns Project Freshdns FreshDNS version 1.0.3 and prior contains a Cross Site Scripting (XSS) vulnerability in Account data form; Zone editor that can result in Execution of attacker's JavaScript code in victim's session. network low complexity freshdns-project CWE-79	5.4
2018-12-20	CVE-2018-1000846	Cross-Site Request Forgery (CSRF) vulnerability in Freshdns Project Freshdns FreshDNS version 1.0.3 and earlier contains a Cross ite Request Forgery (CSRF) vulnerability in All (authenticated) API calls in index.php / class.manager.php that can result in Editing domains and zones with victim's privileges. network low complexity freshdns-project CWE-352	8.8

Vulnerabilities > Freshdns Project {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Freshdns Project"}]}