Cross-Site Request Forgery (CSRF) in GitHub repository wallabag/wallabag prior to...
6.5CVSS
6.5AI Score
0.0005EPSS
Cross-Site Request Forgery (CSRF) in GitHub repository wallabag/wallabag prior to...
5.7CVSS
5AI Score
0.0005EPSS
A vulnerability was found in wallabag 2.5.4. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /config of the component Profile Config. The manipulation of the argument Name leads to allocation of resources. The exploit has been disclosed...
6.5CVSS
6.4AI Score
0.001EPSS
5.3CVSS
5.8AI Score
0.001EPSS
Cross-Site Request Forgery (CSRF) in GitHub repository wallabag/wallabag prior to...
6.5CVSS
6.5AI Score
0.001EPSS
Cross-site Scripting (XSS) - Stored in GitHub repository wallabag/wallabag prior to...
5.4CVSS
4.6AI Score
0.001EPSS
4.3CVSS
4.7AI Score
0.001EPSS
4.3CVSS
4.9AI Score
0.001EPSS
The Wallabag application 2.2.3 to 2.3.2 is affected by one cross-site scripting (XSS) vulnerability that is stored within the configuration page. This vulnerability enables the execution of a JavaScript payload each time an administrator visits the configuration page. The vulnerability can be...
4CVSS
4.2AI Score
0.001EPSS