Vulnerabilities > Sonicjs
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-06-05 | CVE-2023-33690 | Path Traversal vulnerability in Sonicjs 0.5.4/0.6.0/0.7.0 SonicJS up to v0.7.0 allows attackers to execute an authenticated path traversal when an attacker injects special characters into the filename of a backup CMS. | 6.5 |
| 2022-10-01 | CVE-2022-42002 | Out-of-bounds Write vulnerability in Sonicjs SonicJS through 0.6.0 allows file overwrite. | 9.1 |