Vulnerabilities > Uptime Kuma Project > Uptime Kuma > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-04-04 | CVE-2023-26777 | Cross-site Scripting vulnerability in Uptime Kuma Project Uptime Kuma 1.19.6 Cross Site Scripting vulnerability found in : louislam Uptime Kuma v.1.19.6 and before allows a remote attacker to execute arbitrary commands via the description, title, footer, and incident creation parameter of the status_page.js endpoint. | 6.1 |
| 2023-02-21 | CVE-2023-25810 | Cross-site Scripting vulnerability in Uptime-Kuma Project Uptime-Kuma Uptime Kuma is a self-hosted monitoring tool. | 5.4 |
| 2023-02-21 | CVE-2023-25811 | Cross-site Scripting vulnerability in Uptime-Kuma Project Uptime-Kuma Uptime Kuma is a self-hosted monitoring tool. | 5.4 |