Vulnerabilities > Inventree Project > Inventree > 0.7.3

DATE CVE VULNERABILITY TITLE RISK
2022-09-29 CVE-2022-3355 Cross-site Scripting vulnerability in Inventree Project Inventree
Cross-site Scripting (XSS) - Stored in GitHub repository inventree/inventree prior to 0.8.3.
network
low complexity
inventree-project CWE-79
5.4
5.4
2022-06-20 CVE-2022-2134 Allocation of Resources Without Limits or Throttling vulnerability in Inventree Project Inventree
Allocation of Resources Without Limits or Throttling in GitHub repository inventree/inventree prior to 0.8.0.
network
low complexity
inventree-project CWE-770
6.5
6.5