Vulnerabilities > Opencats > Opencats > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-01-27 | CVE-2022-48011 | SQL Injection vulnerability in Opencats 0.9.7 Opencats v0.9.7 was discovered to contain a SQL injection vulnerability via the importID parameter in the Import viewerrors function. | 9.8 |
| 2022-10-19 | CVE-2022-43019 | Deserialization of Untrusted Data vulnerability in Opencats 0.9.6 OpenCATS v0.9.6 was discovered to contain a remote code execution (RCE) vulnerability via the getDataGridPager's ajax functionality. | 9.8 |
| 2021-12-15 | CVE-2021-41560 | Unrestricted Upload of File with Dangerous Type vulnerability in Opencats OpenCATS through 0.9.6 allows remote attackers to execute arbitrary code by uploading an executable file via lib/FileUtility.php. | 10.0 |
| 2021-01-18 | CVE-2021-25294 | Deserialization of Untrusted Data vulnerability in Opencats OpenCATS through 0.9.5-3 unsafely deserializes index.php?m=activity requests, leading to remote code execution. | 10.0 |