VYPR

Dice

by Bihell

Source repositories

CVEs (2)

  • CVE-2022-32413CriJul 5, 2022
    risk 0.64cvss 9.8epss 0.02

    An arbitrary file upload vulnerability in Dice v4.2.0 allows attackers to execute arbitrary code via a crafted file.

  • CVE-2024-3687LowApr 12, 2024
    risk 0.23cvss 3.5epss 0.00

    A vulnerability was found in bihell Dice 3.1.0 and classified as problematic. Affected by this issue is some unknown functionality of the component Comment Handler. The manipulation leads to cross site scripting. The attack may be launched remotely. The exploit has been…