VYPR

Daloradius

by Liran Tal

CVEs (6)

  • CVE-2023-0048HigJan 4, 2023
    risk 0.03cvss 8.8epss 0.32

    Code Injection in GitHub repository lirantal/daloradius prior to master-branch.

  • CVE-2023-0338MedJan 17, 2023
    risk 0.00cvss 6.1epss 0.00

    Cross-site Scripting (XSS) - Reflected in GitHub repository lirantal/daloradius prior to master-branch.

  • CVE-2023-0046HigJan 4, 2023
    risk 0.00cvss 7.2epss 0.01

    Improper Restriction of Names for Files and Other Resources in GitHub repository lirantal/daloradius prior to master-branch.

  • CVE-2022-4630MedDec 21, 2022
    risk 0.00cvss 5.3epss 0.01

    Sensitive Cookie Without 'HttpOnly' Flag in GitHub repository lirantal/daloradius prior to master.

  • CVE-2022-4366HigDec 8, 2022
    risk 0.00cvss 7.5epss 0.01

    Missing Authorization in GitHub repository lirantal/daloradius prior to master branch.

  • CVE-2009-4347Dec 17, 2009
    risk 0.00cvss epss 0.01

    Cross-site scripting (XSS) vulnerability in daloradius-users/login.php in daloRADIUS 0.9-8 and earlier allows remote attackers to inject arbitrary web script or HTML via the error parameter.