Vulnerabilities > Weseek > Growi > 4.4.3
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-10-24 | CVE-2022-41799 | Unspecified vulnerability in Weseek Growi Improper access control vulnerability in GROWI prior to v5.1.4 (v5 series) and versions prior to v4.5.25 (v4 series) allows a remote authenticated attacker to bypass access restriction and download the markdown data from the pages set to private by the other users. | 6.5 |
| 2022-04-05 | CVE-2022-1236 | Weak Password Requirements vulnerability in Weseek Growi Weak Password Requirements in GitHub repository weseek/growi prior to v5.0.0. | 6.4 |
| 2022-01-12 | CVE-2021-3852 | Authorization Bypass Through User-Controlled Key vulnerability in Weseek Growi growi is vulnerable to Authorization Bypass Through User-Controlled Key | 5.0 |