Vulnerabilities > Metersphere > Metersphere > 1.20.5
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-12-28 | CVE-2023-50267 | Authorization Bypass Through User-Controlled Key vulnerability in Metersphere MeterSphere is a one-stop open source continuous testing platform. | 4.3 |
| 2023-09-27 | CVE-2023-41878 | Use of Hard-coded Credentials vulnerability in Metersphere MeterSphere is a one-stop open source continuous testing platform, covering functions such as test tracking, interface testing, UI testing and performance testing. | 9.8 |
| 2023-08-04 | CVE-2023-38494 | Missing Authorization vulnerability in Metersphere MeterSphere is an open-source continuous testing platform. | 7.5 |
| 2023-07-17 | CVE-2023-37461 | Path Traversal vulnerability in Metersphere Metersphere is an opensource testing framework. | 9.8 |
| 2023-07-06 | CVE-2023-35937 | Missing Authorization vulnerability in Metersphere Metersphere is an open source continuous testing platform. | 8.8 |
| 2023-05-30 | CVE-2023-32699 | Allocation of Resources Without Limits or Throttling vulnerability in Metersphere MeterSphere is an open source continuous testing platform. | 6.5 |