Vulnerabilities > Shaarli Project

DATE	CVE	VULNERABILITY TITLE	RISK
2023-12-28	CVE-2023-49469	Cross-site Scripting vulnerability in Shaarli Project Shaarli 0.12.2 Reflected Cross Site Scripting (XSS) vulnerability in Shaarli v0.12.2, allows remote attackers to execute arbitrary code via search tag function. network low complexity shaarli-project CWE-79	6.1
2020-01-02	CVE-2013-7351	Cross-site Scripting vulnerability in Shaarli Project Shaarli Multiple cross-site scripting (XSS) vulnerabilities in index.php in Shaarli allow remote attackers to inject arbitrary web script or HTML via the URL to the (1) showRSS, (2) showATOM, or (3) showDailyRSS function; a (4) file name to the importFile function; or (5) vectors related to bookmarks. network low complexity shaarli-project CWE-79	6.1
2018-01-05	CVE-2018-5249	Cross-site Scripting vulnerability in Shaarli Project Shaarli Cross-site scripting (XSS) vulnerability in Shaarli before 0.8.5 and 0.9.x before 0.9.3 allows remote attackers to inject arbitrary code via the login form's username field (aka the login parameter to the ban_canLogin function in index.php). network low complexity shaarli-project CWE-79	6.1
2017-10-11	CVE-2017-15215	Cross-site Scripting vulnerability in Shaarli Project Shaarli 0.9.1 Reflected XSS vulnerability in Shaarli v0.9.1 allows an unauthenticated attacker to inject JavaScript via the searchtags parameter to index.php. network low complexity shaarli-project CWE-79	6.1

Vulnerabilities > Shaarli Project {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Shaarli Project"}]}