Vulnerabilities > Plantuml > Plantuml > 1.2020.13

DATE CVE VULNERABILITY TITLE RISK
2023-06-27 CVE-2023-3431 Improper Access Control vulnerability in multiple products
Improper Access Control in GitHub repository plantuml/plantuml prior to 1.2023.9.
network
low complexity
plantuml fedoraproject CWE-284
5.3
5.3
2023-06-27 CVE-2023-3432 Server-Side Request Forgery (SSRF) vulnerability in multiple products
Server-Side Request Forgery (SSRF) in GitHub repository plantuml/plantuml prior to 1.2023.9.
network
low complexity
plantuml fedoraproject CWE-918
critical
 10.0
10
2022-05-14 CVE-2022-1379 Server-Side Request Forgery (SSRF) vulnerability in multiple products
URL Restriction Bypass in GitHub repository plantuml/plantuml prior to V1.2022.5.
network
low complexity
plantuml fedoraproject CWE-918
critical
 9.1
9.1
2022-04-15 CVE-2022-1231 Cross-site Scripting vulnerability in multiple products
XSS via Embedded SVG in SVG Diagram Format in GitHub repository plantuml/plantuml prior to 1.2022.4.
network
low complexity
plantuml fedoraproject CWE-79
6.1
6.1