Vulnerabilities > Kodcloud > Kodexplorer

DATE CVE VULNERABILITY TITLE RISK
2023-12-19 CVE-2023-49489 Cross-site Scripting vulnerability in Kodcloud Kodexplorer 4.51
Reflective Cross Site Scripting (XSS) vulnerability in KodExplorer version 4.51, allows attackers to obtain sensitive information and escalate privileges via the APP_HOST parameter at config/i18n/en/main.php.
network
low complexity
kodcloud CWE-79
6.1
6.1
2023-12-16 CVE-2023-6852 Server-Side Request Forgery (SSRF) vulnerability in Kodcloud Kodexplorer
A vulnerability classified as critical has been found in kalcaddle KodExplorer up to 4.51.03.
network
low complexity
kodcloud CWE-918
critical
 9.8
9.8
2023-12-16 CVE-2023-6853 Server-Side Request Forgery (SSRF) vulnerability in Kodcloud Kodexplorer
A vulnerability classified as critical was found in kalcaddle KodExplorer up to 4.51.03.
network
low complexity
kodcloud CWE-918
critical
 9.8
9.8
2023-12-16 CVE-2023-6851 Code Injection vulnerability in Kodcloud Kodexplorer
A vulnerability was found in kalcaddle KodExplorer up to 4.51.03.
network
low complexity
kodcloud CWE-94
critical
 9.8
9.8
2023-12-16 CVE-2023-6850 Unrestricted Upload of File with Dangerous Type vulnerability in Kodcloud Kodexplorer
A vulnerability was found in kalcaddle KodExplorer up to 4.51.03.
network
low complexity
kodcloud CWE-434
critical
 9.8
9.8
2023-09-06 CVE-2021-36646 Cross-site Scripting vulnerability in Kodcloud Kodexplorer 4.45
A Cross Site Scrtpting (XSS) vulnerability in KodExplorer 4.45 allows remote attackers to run arbitrary code via /index.php page.
network
low complexity
kodcloud CWE-79
6.1
6.1
2023-07-10 CVE-2023-37153 Cross-site Scripting vulnerability in Kodcloud Kodexplorer 4.51
KodExplorer 4.51 contains a Cross-Site Scripting (XSS) vulnerability in the Description box of the Light App creation feature.
network
low complexity
kodcloud CWE-79
6.1
6.1
2023-04-22 CVE-2022-4944 Cross-Site Request Forgery (CSRF) vulnerability in Kodcloud Kodexplorer
A vulnerability, which was classified as problematic, has been found in kalcaddle KodExplorer up to 4.49.
network
low complexity
kodcloud CWE-352
8.8
8.8
2022-12-06 CVE-2022-46154 Path Traversal vulnerability in Kodcloud Kodexplorer
Kodexplorer is a chinese language web based file manager and browser based code editor.
network
low complexity
kodcloud CWE-22
7.5
7.5