Vulnerabilities > Freshrss > Freshrss > 1.11.1
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-03-06 | CVE-2023-22481 | Information Exposure Through Log Files vulnerability in Freshrss FreshRSS is a self-hosted RSS feed aggregator. | 5.5 |
| 2019-01-30 | CVE-2018-19782 | Cross-site Scripting vulnerability in Freshrss 1.11.1 Multiple cross-site scripting (XSS) vulnerabilities in GET requests in FreshRSS 1.11.1 allow remote attackers to inject arbitrary web script or HTML via the (1) c parameter or (2) a parameter. | 4.3 |