Lucene search

Community-skeleton Security Vulnerabilities

cve

CVE-2024-3137

Improper Privilege Management in...

7.1CVSS

7.4AI Score

0.0004EPSS

2024-04-02 01:15 AM

cve

CVE-2023-37635

UVDesk Community Skeleton v1.1.1 allows unauthenticated attackers to perform brute force attacks on the login page to gain access to the...

9.8CVSS

7.7AI Score

0.004EPSS

2023-10-23 09:15 PM

cve

CVE-2023-0265

Uvdesk version 1.1.1 allows an authenticated remote attacker to execute commands on the server. This is possible because the application does not properly validate profile pictures uploaded by...

8.8CVSS

8.8AI Score

0.001EPSS

2023-04-04 10:15 PM

cve

CVE-2023-0325

Uvdesk version 1.1.1 allows an unauthenticated remote attacker to exploit a stored XSS in the application. This is possible because the application does not correctly validate the message sent by the clients in the...

6.1CVSS

6AI Score

0.003EPSS

2023-04-04 10:15 PM

cve

CVE-2023-1197

Cross-site Scripting (XSS) - Stored in GitHub repository uvdesk/community-skeleton prior to...

4.3CVSS

4.9AI Score

0.001EPSS

2023-03-06 04:15 PM