EasyCTF before 1.4 does not validate the session ID, which allows remote attackers to obtain access via a crafted HTTP...
6.8AI Score
0.002EPSS
Cross-site scripting (XSS) vulnerability in EasyCTF before 1.4 allows remote authenticated users to inject arbitrary web script or HTML via unspecified...
5.4AI Score
0.001EPSS
EasyCTF before 1.4 allows remote authenticated users to write executable content to files via unspecified...
6.4AI Score
0.003EPSS