Vulnerabilities > Webswing

DATE CVE VULNERABILITY TITLE RISK
2022-07-08 CVE-2022-34914 Injection vulnerability in Webswing
Webswing before 22.1.3 allows X-Forwarded-For header injection.
network
low complexity
webswing CWE-74
critical
 9.8
9.8
2020-12-30 CVE-2020-11103 Unspecified vulnerability in Webswing
JsLink in Webswing before 2.6.12 LTS, and 2.7.x and 20.x before 20.1, allows remote code execution.
network
low complexity
webswing
critical
 9.8
9.8