Vulnerabilities > Freshrss

DATE CVE VULNERABILITY TITLE RISK
2023-03-06 CVE-2023-22481 Information Exposure Through Log Files vulnerability in Freshrss
FreshRSS is a self-hosted RSS feed aggregator.
local
low complexity
freshrss CWE-532
5.5
2022-12-09 CVE-2022-23497 Information Exposure vulnerability in Freshrss
FreshRSS is a free, self-hostable RSS aggregator.
network
low complexity
freshrss CWE-200
7.5
2019-01-30 CVE-2018-19782 Cross-site Scripting vulnerability in Freshrss 1.11.1
Multiple cross-site scripting (XSS) vulnerabilities in GET requests in FreshRSS 1.11.1 allow remote attackers to inject arbitrary web script or HTML via the (1) c parameter or (2) a parameter.
network
freshrss CWE-79
4.3