Vulnerabilities > Kodcloud

DATE CVE VULNERABILITY TITLE RISK
2024-01-17 CVE-2023-52069 Cross-site Scripting vulnerability in Kodcloud Kodbox 1.49.04
kodbox v1.49.04 was discovered to contain a cross-site scripting (XSS) vulnerability via the URL parameter.
network
low complexity
kodcloud CWE-79
5.4
5.4
2024-01-16 CVE-2023-39691 Unspecified vulnerability in Kodcloud Kodbox
An issue discovered in kodbox through 1.43 allows attackers to arbitrarily add Administrator accounts via crafted GET request.
network
low complexity
kodcloud
critical
 9.8
9.8
2024-01-16 CVE-2023-52068 Cross-site Scripting vulnerability in Kodcloud Kodbox 1.43
kodbox v1.43 was discovered to contain a cross-site scripting (XSS) vulnerability via the operation and login logs.
network
low complexity
kodcloud CWE-79
6.1
6.1
2023-12-19 CVE-2023-49489 Cross-site Scripting vulnerability in Kodcloud Kodexplorer 4.51
Reflective Cross Site Scripting (XSS) vulnerability in KodExplorer version 4.51, allows attackers to obtain sensitive information and escalate privileges via the APP_HOST parameter at config/i18n/en/main.php.
network
low complexity
kodcloud CWE-79
6.1
6.1
2023-12-16 CVE-2023-6852 Server-Side Request Forgery (SSRF) vulnerability in Kodcloud Kodexplorer
A vulnerability classified as critical has been found in kalcaddle KodExplorer up to 4.51.03.
network
low complexity
kodcloud CWE-918
critical
 9.8
9.8
2023-12-16 CVE-2023-6853 Server-Side Request Forgery (SSRF) vulnerability in Kodcloud Kodexplorer
A vulnerability classified as critical was found in kalcaddle KodExplorer up to 4.51.03.
network
low complexity
kodcloud CWE-918
critical
 9.8
9.8
2023-12-16 CVE-2023-6851 Code Injection vulnerability in Kodcloud Kodexplorer
A vulnerability was found in kalcaddle KodExplorer up to 4.51.03.
network
low complexity
kodcloud CWE-94
critical
 9.8
9.8
2023-12-16 CVE-2023-6850 Unrestricted Upload of File with Dangerous Type vulnerability in Kodcloud Kodexplorer
A vulnerability was found in kalcaddle KodExplorer up to 4.51.03.
network
low complexity
kodcloud CWE-434
critical
 9.8
9.8
2023-12-16 CVE-2023-6849 Server-Side Request Forgery (SSRF) vulnerability in Kodcloud Kodbox
A vulnerability was found in kalcaddle kodbox up to 1.48.
network
low complexity
kodcloud CWE-918
critical
 9.8
9.8
2023-12-16 CVE-2023-6848 Command Injection vulnerability in Kodcloud Kodbox
A vulnerability was found in kalcaddle kodbox up to 1.48.
network
low complexity
kodcloud CWE-77
critical
 9.8
9.8