Vulnerabilities > Opencats > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-10-19 | CVE-2022-43015 | Cross-site Scripting vulnerability in Opencats 0.9.6 OpenCATS v0.9.6 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the entriesPerPage parameter. | 6.1 |
| 2022-10-19 | CVE-2022-43016 | Cross-site Scripting vulnerability in Opencats 0.9.6 OpenCATS v0.9.6 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the callback component. | 6.1 |
| 2022-10-19 | CVE-2022-43017 | Cross-site Scripting vulnerability in Opencats 0.9.6 OpenCATS v0.9.6 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the indexFile component. | 6.1 |
| 2022-10-19 | CVE-2022-43018 | Cross-site Scripting vulnerability in Opencats 0.9.6 OpenCATS v0.9.6 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the email parameter in the Check Email function. | 6.1 |
| 2022-10-19 | CVE-2022-43020 | SQL Injection vulnerability in Opencats 0.9.6 OpenCATS v0.9.6 was discovered to contain a SQL injection vulnerability via the tag_id variable in the Tag update function. | 6.5 |
| 2022-10-19 | CVE-2022-43021 | SQL Injection vulnerability in Opencats 0.9.6 OpenCATS v0.9.6 was discovered to contain a SQL injection vulnerability via the entriesPerPage variable. | 6.5 |
| 2022-10-19 | CVE-2022-43022 | SQL Injection vulnerability in Opencats 0.9.6 OpenCATS v0.9.6 was discovered to contain a SQL injection vulnerability via the tag_id variable in the Tag deletion function. | 6.5 |
| 2022-10-19 | CVE-2022-43023 | SQL Injection vulnerability in Opencats 0.9.6 OpenCATS v0.9.6 was discovered to contain a SQL injection vulnerability via the importID parameter in the Import viewerrors function. | 6.5 |
| 2021-01-18 | CVE-2021-25295 | Cross-site Scripting vulnerability in Opencats OpenCATS through 0.9.5-3 has multiple Cross-site Scripting (XSS) issues. | 6.1 |