Vulnerabilities > Html JS > Doracms > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-01-29 | CVE-2023-51840 | Use of Hard-coded Credentials vulnerability in Html-Js Doracms 2.1.8 DoraCMS 2.1.8 is vulnerable to Use of Hard-coded Cryptographic Key. | 9.8 |
| 2023-12-08 | CVE-2023-49443 | Improper Restriction of Excessive Authentication Attempts vulnerability in Html-Js Doracms 2.1.8 DoraCMS v2.1.8 was discovered to re-use the same code for verification of valid usernames and passwords. | 9.8 |
| 2022-08-17 | CVE-2022-35147 | Information Exposure vulnerability in Html-Js Doracms DoraCMS v2.18 and earlier allows attackers to bypass login authentication via a crafted HTTP request. | 9.8 |