Vulnerabilities > Metersphere > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-12-28 | CVE-2023-50267 | Authorization Bypass Through User-Controlled Key vulnerability in Metersphere MeterSphere is a one-stop open source continuous testing platform. | 4.3 |
| 2023-05-30 | CVE-2023-32699 | Allocation of Resources Without Limits or Throttling vulnerability in Metersphere MeterSphere is an open source continuous testing platform. | 6.5 |
| 2023-05-04 | CVE-2023-30550 | Authorization Bypass Through User-Controlled Key vulnerability in Metersphere MeterSphere is an open source continuous testing platform, covering functions such as test tracking, interface testing, UI testing, and performance testing. | 4.5 |
| 2023-03-09 | CVE-2023-25814 | Path Traversal vulnerability in Metersphere metersphere is an open source continuous testing platform. | 6.5 |
| 2022-09-29 | CVE-2021-45789 | Unspecified vulnerability in Metersphere 1.15.4 An arbitrary file read vulnerability was found in Metersphere v1.15.4, where authenticated users can read any file on the server via the file download function. | 6.5 |