Vulnerabilities > Jirafeau

DATE CVE VULNERABILITY TITLE RISK
2022-05-17 CVE-2022-30110 Cross-site Scripting vulnerability in Jirafeau
The file preview functionality in Jirafeau < 4.4.0, which is enabled by default, could be exploited for cross site scripting.
network
jirafeau CWE-79
4.3
2018-07-07 CVE-2018-11351 Cross-site Scripting vulnerability in Jirafeau
script.php in Jirafeau before 3.4.1 is affected by two stored Cross-Site Scripting (XSS) vulnerabilities.
network
jirafeau CWE-79
4.3
2018-07-07 CVE-2018-11350 Cross-site Scripting vulnerability in Jirafeau
An issue was discovered in Jirafeau before 3.4.1.
network
jirafeau CWE-79
4.3
2018-07-07 CVE-2018-11349 Cross-Site Request Forgery (CSRF) vulnerability in Jirafeau
The administration panel of Jirafeau before 3.4.1 is vulnerable to three CSRF attacks on search functionalities: search_by_name, search_by_hash, and search_link.
network
jirafeau CWE-352
6.8
2018-07-06 CVE-2018-13409 Cross-site Scripting vulnerability in Jirafeau
An issue was discovered in Jirafeau before 3.4.1.
network
jirafeau CWE-79
4.3
2018-07-06 CVE-2018-13408 Cross-site Scripting vulnerability in Jirafeau
An issue was discovered in Jirafeau before 3.4.1.
network
jirafeau CWE-79
4.3
2018-07-06 CVE-2018-13407 Cross-Site Request Forgery (CSRF) vulnerability in Jirafeau
A CSRF issue was discovered in Jirafeau before 3.4.1.
network
low complexity
jirafeau CWE-352
5.5