Vulnerabilities > Withknown

DATE	CVE	VULNERABILITY TITLE	RISK
2022-07-08	CVE-2022-30852	Authorization Bypass Through User-Controlled Key vulnerability in Withknown Known Known v1.3.1 was discovered to contain an Insecure Direct Object Reference (IDOR). network low complexity withknown CWE-639	4.3
2022-07-08	CVE-2022-31290	Cross-site Scripting vulnerability in Withknown Known A cross-site scripting (XSS) vulnerability in Known v1.2.2+2020061101 allows authenticated attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Your Name text field. network low complexity withknown CWE-79	5.4
2022-07-08	CVE-2022-32115	Cross-site Scripting vulnerability in Withknown Known An issue in the isSVG() function of Known v1.2.2+2020061101 allows attackers to execute arbitrary code via a crafted SVG file. network low complexity withknown CWE-79	6.1
2022-07-08	CVE-2022-33011	Injection vulnerability in Withknown Known Known v1.3.1+2020120201 was discovered to allow attackers to perform an account takeover via a host header injection attack. network low complexity withknown CWE-74	8.8

Vulnerabilities > Withknown {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Withknown"}]}