Lucene search
Cerebrate-projectCerebrate*
6 matches found
CVE-2022-25321
An issue was discovered in Cerebrate through 1.4. XSS could occur in the bookmarks component.
6.1CVSS5.9AI score0.00398EPSS
CVE-2022-25318
An issue was discovered in Cerebrate through 1.4. An incorrect sharing group ACL allowed an unprivileged user to edit and modify sharing groups.
4.3CVSS4.5AI score0.00146EPSS
CVE-2022-25320
An issue was discovered in Cerebrate through 1.4. Username enumeration could occur.
5.3CVSS5.2AI score0.0022EPSS
CVE-2022-25319
An issue was discovered in Cerebrate through 1.4. Endpoints could be open even when not enabled.
5.3CVSS5.2AI score0.00398EPSS
CVE-2022-25317
An issue was discovered in Cerebrate through 1.4. genericForm allows reflected XSS in form descriptions via a user-controlled description.
6.1CVSS5.9AI score0.00228EPSS
CVE-2023-41908
Cerebrate before 1.15 lacks the Secure attribute for the session cookie.
5.3CVSS5.3AI score0.00072EPSS