Vendor
Stanford
Products
2
CVEs
2
Across products
4
Status
Private
Products
2- 3 CVEs
- 1 CVE
Recent CVEs
2| CVE | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2022-0239 | Cri | 0.57 | 9.8 | 0.00 | Jan 17, 2022 | corenlp is vulnerable to Improper Restriction of XML External Entity Reference | |
| CVE-2009-2945 | 0.00 | — | 0.00 | Sep 15, 2009 | weblogin/login.fcgi (aka the WebLogin login script) in Stanford University WebAuth 3.5.5, 3.6.0, and 3.6.1 places passwords in URLs in certain circumstances involving conversion of a POST request to a GET request, which allows context-dependent attackers to discover passwords by reading (1) web-server access logs, (2) web-server Referer logs, or (3) the browser history. |