CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

NVD•added 2025/06/25 6:15 a.m.•4 views

CVE-2025-43880

Inefficient regular expression complexity issue exists in GROWI prior to v7.1.6. If exploited, a logged-in user may cause a denial of service DoS condition...

5.3CVSS0.00271EPSS

Exploits0References2

CNVD•added 2021/06/17 12:0 a.m.•2 views

WESEEK GROWI Access Control Error Vulnerability (CNVD-2021-43487)

Weseek GROWI is a suite of team collaboration software from Weseek Japan. An access control error vulnerability exists in WESEEK GROWI that originates from an error in the handling of authentication requests. A remote, authenticated attacker could exploit the vulnerability to view unauthorized...

6.5CVSS6.6AI score0.01052EPSS

Exploits0References1

NVD•added 2021/03/10 10:15 a.m.•13 views

CVE-2021-20673

Stored cross-site scripting vulnerability in Admin Page of GROWI v4.2 Series versions from v4.2.0 to v4.2.7 allows remote authenticated attackers to inject an arbitrary script via unspecified vectors...

4.8CVSS0.00754EPSS

Exploits0References2

NVD•added 2021/03/10 10:15 a.m.•15 views

CVE-2021-20672

Reflected cross-site scripting vulnerability due to insufficient verification of URL query parameters in GROWI v4.2 Series versions from v4.2.0 to v4.2.7 allows remote attackers to inject an arbitrary script via unspecified vectors...

6.1CVSS0.00947EPSS

Exploits0References2