Vulnerabilities > Metersphere > High

DATE CVE VULNERABILITY TITLE RISK
2023-08-04 CVE-2023-38494 Missing Authorization vulnerability in Metersphere
MeterSphere is an open-source continuous testing platform.
network
low complexity
metersphere CWE-862
7.5
7.5
2023-07-06 CVE-2023-35937 Missing Authorization vulnerability in Metersphere
Metersphere is an open source continuous testing platform.
network
low complexity
metersphere CWE-862
8.8
8.8
2023-03-09 CVE-2023-25573 Missing Authorization vulnerability in Metersphere
metersphere is an open source continuous testing platform.
network
low complexity
metersphere CWE-862
7.5
7.5
2022-09-29 CVE-2021-45788 SQL Injection vulnerability in Metersphere 1.15.4
Time-based SQL Injection vulnerabilities were found in Metersphere v1.15.4 via the "orders" parameter.
network
low complexity
metersphere CWE-89
8.8
8.8