Vulnerabilities > Galaxyproject

DATE	CVE	VULNERABILITY TITLE	RISK
2023-09-22	CVE-2023-42812	Server-Side Request Forgery (SSRF) vulnerability in Galaxyproject Galaxy Galaxy is an open-source platform for FAIR data analysis. network low complexity galaxyproject CWE-918	4.3
2023-03-20	CVE-2023-27578	Incorrect Authorization vulnerability in Galaxyproject Galaxy Galaxy is an open-source platform for data analysis. network low complexity galaxyproject CWE-863	7.5
2023-01-17	CVE-2015-10062	Injection vulnerability in Galaxyproject Galaxy A vulnerability, which was classified as problematic, was found in galaxy-data-resource up to 14.10.0. network low complexity galaxyproject CWE-74 critical	9.8
2022-12-06	CVE-2022-23470	Path Traversal vulnerability in Galaxyproject Galaxy 22.01/22.01.1/22.05 Galaxy is an open-source platform for data analysis. network low complexity galaxyproject CWE-22	7.5
2018-06-26	CVE-2018-1000516	Cross-site Scripting vulnerability in Galaxyproject Galaxy 14.10 The Galaxy Project Galaxy version v14.10 contains a CWE-79: Improper Neutralization of Input During Web Page Generation vulnerability in Many templates used in the Galaxy server did not properly sanitize user's input, which would allow for cross-site scripting (XSS) attacks. network low complexity galaxyproject CWE-79	6.1

Vulnerabilities > Galaxyproject {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Galaxyproject"}]}