Vulnerabilities > Knime > Knime Analytics Platform > 3.1.1
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-10-12 | CVE-2023-5562 | Cross-site Scripting vulnerability in Knime Analytics Platform An unsafe default configuration in KNIME Analytics Platform before 5.2.0 allows for a cross-site scripting attack. | 6.1 |
| 2021-12-16 | CVE-2021-45096 | XXE vulnerability in Knime Analytics Platform KNIME Analytics Platform before 4.5.0 is vulnerable to XXE (external XML entity injection) via a crafted workflow file (.knwf), aka AP-17730. | 4.3 |