VYPR

Froxlor

by Froxlor

Source repositories

CVEs (47)

  • CVE-2022-4868Dec 31, 2022
    risk 0.00cvss epss 0.01

    Improper Authorization in GitHub repository froxlor/froxlor prior to 2.0.0-beta1.

  • CVE-2022-4867Dec 31, 2022
    risk 0.00cvss epss 0.00

    Cross-Site Request Forgery (CSRF) in GitHub repository froxlor/froxlor prior to 2.0.0-beta1.

  • CVE-2022-4864Dec 30, 2022
    risk 0.00cvss epss 0.00

    Argument Injection in GitHub repository froxlor/froxlor prior to 2.0.0-beta1.

  • CVE-2022-3869Nov 5, 2022
    risk 0.00cvss epss 0.01

    Code Injection in GitHub repository froxlor/froxlor prior to 0.10.38.2.

  • CVE-2022-3721Nov 4, 2022
    risk 0.00cvss epss 0.01

    Code Injection in GitHub repository froxlor/froxlor prior to 0.10.39.

  • CVE-2022-3017Aug 28, 2022
    risk 0.00cvss epss 0.00

    Cross-Site Request Forgery (CSRF) in GitHub repository froxlor/froxlor prior to 0.10.38.

  • CVE-2020-29653Apr 13, 2022
    risk 0.00cvss epss 0.01

    Froxlor through 0.10.22 does not perform validation on user input passed in the customermail GET parameter. The value of this parameter is reflected in the login webpage, allowing the injection of arbitrary HTML tags.

Page 3 of 3