Vulnerabilities > Joget

DATE	CVE	VULNERABILITY TITLE	RISK
2022-12-30	CVE-2022-4859	Cross-site Scripting vulnerability in Joget DX A vulnerability, which was classified as problematic, has been found in Joget up to 7.0.33. network low complexity joget CWE-79	6.1
2022-12-16	CVE-2022-4560	Cross-site Scripting vulnerability in Joget DX A vulnerability was found in Joget up to 7.0.31. network low complexity joget CWE-79	6.1
2022-03-25	CVE-2022-26197	Cross-site Scripting vulnerability in Joget DX 7.0 Joget DX 7 was discovered to contain a cross-site scripting (XSS) vulnerability via the Datalist table. network low complexity joget CWE-79	5.4
2019-07-28	CVE-2019-14352	Improper Neutralization of Formula Elements in a CSV File vulnerability in Joget Worfklow 6.0.20 In Joget Workflow 6.0.20, CSV Injection, also known as Formula Injection, exists, as demonstrated by jw/web/userview/crm_community/crm_userview_sales/_/account_new with the Account ID or Account Name field. local low complexity joget CWE-1236	7.8

Vulnerabilities > Joget {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Joget"}]}