Vulnerabilities > Froxlor > Medium

DATE CVE VULNERABILITY TITLE RISK
2023-10-13 CVE-2023-4829 Cross-site Scripting vulnerability in Froxlor
Cross-site Scripting (XSS) - Stored in GitHub repository froxlor/froxlor prior to 2.0.22.
network
low complexity
froxlor CWE-79
5.4
2023-10-13 CVE-2023-5564 Cross-site Scripting vulnerability in Froxlor
Cross-site Scripting (XSS) - Stored in GitHub repository froxlor/froxlor prior to 2.1.0-dev1.
network
low complexity
froxlor CWE-79
4.8
2023-06-11 CVE-2023-3192 Session Fixation vulnerability in Froxlor
Session Fixation in GitHub repository froxlor/froxlor prior to 2.1.0.
network
low complexity
froxlor CWE-384
5.4
2023-01-29 CVE-2023-0572 Improper Check for Unusual or Exceptional Conditions vulnerability in Froxlor
Unchecked Error Condition in GitHub repository froxlor/froxlor prior to 2.0.10.
network
low complexity
froxlor CWE-754
5.3
2023-01-29 CVE-2023-0565 Business Logic Errors vulnerability in Froxlor
Business Logic Errors in GitHub repository froxlor/froxlor prior to 2.0.10.
network
low complexity
froxlor CWE-840
4.9
2023-01-29 CVE-2023-0566 Cross-site Scripting vulnerability in Froxlor
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in froxlor/froxlor prior to 2.0.10.
network
low complexity
froxlor CWE-79
4.8
2023-01-16 CVE-2023-0316 Path Traversal: '..filename' vulnerability in Froxlor
Path Traversal: '\..\filename' in GitHub repository froxlor/froxlor prior to 2.0.0.
local
low complexity
froxlor CWE-29
5.5
2022-12-31 CVE-2022-4868 Improper Authorization vulnerability in Froxlor
Improper Authorization in GitHub repository froxlor/froxlor prior to 2.0.0-beta1.
network
low complexity
froxlor CWE-285
4.3
2022-12-31 CVE-2022-4867 Cross-Site Request Forgery (CSRF) vulnerability in Froxlor
Cross-Site Request Forgery (CSRF) in GitHub repository froxlor/froxlor prior to 2.0.0-beta1.
network
low complexity
froxlor CWE-352
4.3
2022-12-30 CVE-2022-4864 Injection vulnerability in Froxlor
Argument Injection in GitHub repository froxlor/froxlor prior to 2.0.0-beta1.
network
low complexity
froxlor CWE-74
5.4