Vulnerabilities > Jgraph

DATE	CVE	VULNERABILITY TITLE	RISK
2022-10-12	CVE-2022-40440	Cross-site Scripting vulnerability in Jgraph Mxgraph 4.2.2 mxGraph v4.2.2 was discovered to contain a cross-site scripting (XSS) vulnerability via the setTooltips() function. network low complexity jgraph CWE-79	6.1
2019-07-01	CVE-2019-13127	Improper Input Validation vulnerability in multiple products An issue was discovered in mxGraph through 4.0.0, related to the "draw.io Diagrams" plugin before 8.3.14 for Confluence and other products. network low complexity draw jgraph CWE-20	6.1
2018-02-24	CVE-2017-18197	XXE vulnerability in Jgraph Mxgraph In mxGraphViewImageReader.java in mxGraph before 3.7.6, the SAXParserFactory instance in convert() is missing flags to prevent XML External Entity (XXE) attacks, as demonstrated by /ServerView. network low complexity jgraph CWE-611 critical	9.8

Vulnerabilities > Jgraph {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Jgraph"}]}