Lucene search

Wallabag Security Vulnerabilities

cve

CVE-2023-4455

Cross-Site Request Forgery (CSRF) in GitHub repository wallabag/wallabag prior to...

6.5CVSS

6.5AI Score

0.0005EPSS

2023-08-21 10:15 AM

2375

cve

CVE-2023-4454

Cross-Site Request Forgery (CSRF) in GitHub repository wallabag/wallabag prior to...

5.7CVSS

5AI Score

0.0005EPSS

2023-08-21 10:15 AM

cve

CVE-2023-3566

A vulnerability was found in wallabag 2.5.4. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /config of the component Profile Config. The manipulation of the argument Name leads to allocation of resources. The exploit has been disclosed...

6.5CVSS

6.4AI Score

0.001EPSS

2023-07-10 04:15 PM

cve

CVE-2023-0734

Improper Authorization in GitHub repository wallabag/wallabag prior to...

5.3CVSS

5.8AI Score

0.001EPSS

2023-03-05 09:15 PM

cve

CVE-2023-0735

Cross-Site Request Forgery (CSRF) in GitHub repository wallabag/wallabag prior to...

6.5CVSS

6.5AI Score

0.001EPSS

2023-02-07 11:15 PM

cve

CVE-2023-0736

Cross-site Scripting (XSS) - Stored in GitHub repository wallabag/wallabag prior to...

5.4CVSS

4.6AI Score

0.001EPSS

2023-02-07 11:15 PM

cve

CVE-2023-0610

Improper Authorization in GitHub repository wallabag/wallabag prior to...

4.3CVSS

4.7AI Score

0.001EPSS

2023-02-01 12:15 PM

cve

CVE-2023-0609

Improper Authorization in GitHub repository wallabag/wallabag prior to...

4.3CVSS

4.9AI Score

0.001EPSS

2023-02-01 12:15 PM

cve

CVE-2018-11352

The Wallabag application 2.2.3 to 2.3.2 is affected by one cross-site scripting (XSS) vulnerability that is stored within the configuration page. This vulnerability enables the execution of a JavaScript payload each time an administrator visits the configuration page. The vulnerability can be...

4CVSS

4.2AI Score

0.001EPSS

2018-09-21 04:29 PM