Vulnerabilities > YF Exam Project
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-03-03 | CVE-2023-25402 | Unrestricted Upload of File with Dangerous Type vulnerability in Yf-Exam Project Yf-Exam 1.8.0 CleverStupidDog yf-exam 1.8.0 is vulnerable to File Upload. | 7.5 |
| 2023-03-03 | CVE-2023-25403 | Authorization Bypass Through User-Controlled Key vulnerability in Yf-Exam Project Yf-Exam 1.8.0 CleverStupidDog yf-exam v 1.8.0 is vulnerable to Authentication Bypass. | 7.5 |
| 2023-03-03 | CVE-2023-26779 | Deserialization of Untrusted Data vulnerability in Yf-Exam Project Yf-Exam 1.8.0 CleverStupidDog yf-exam v 1.8.0 is vulnerable to Deserialization which can lead to remote code execution (RCE). | 9.8 |
| 2023-03-02 | CVE-2023-26780 | SQL Injection vulnerability in Yf-Exam Project Yf-Exam 1.8.0 CleverStupidDog yf-exam v 1.8.0 is vulnerable to SQL Injection. | 9.8 |