Answer@1.2.1 Security Vulnerabilities and Issues — Answer@1.2.1 CVE List

Lucene search

ApacheAnswer1.2.1

2 matches found

CVE•added 2024/02/22 10:15 a.m.•6646 views

CVE-2024-23349

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Apache Answer.This issue affects Apache Answer: through 1.2.1. XSS attack when user enters summary. A logged-in user, when modifying their own submitted question, can input malicious code in the su...

5.4CVSS6.7AI score0.0271EPSS

CVE•added 2024/02/22 10:15 a.m.•6613 views

CVE-2024-26578

Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') vulnerability in Apache Answer.This issue affects Apache Answer: through 1.2.1. Repeated submission during registration resulted in the registration of the same user. When users register, if they rapidly sub...

5.9CVSS5.7AI score0.00284EPSS