Pwndoc Security Vulnerabilities and Issues — Pwndoc CVE List

Lucene search

Pwndoc ProjectPwndoc

10 matches found

CVE•added 2022/12/05 8:15 p.m.•73 views

CVE-2022-45771

An issue in the /api/audits component of Pwndoc v0.5.3 allows attackers to escalate privileges and execute arbitrary code via uploading a crafted audit file.

8.8CVSS8.9AI score0.45143EPSS

CVE•added 2022/10/30 12:15 a.m.•67 views

CVE-2022-44023

PwnDoc through 0.5.3 might allow remote attackers to identify disabled user account names by leveraging response messages for authentication attempts.

5.3CVSS5.4AI score0.00078EPSS

CVE•added 2022/10/30 12:15 a.m.•60 views

CVE-2022-44022

PwnDoc through 0.5.3 might allow remote attackers to identify valid user account names by leveraging response timings for authentication attempts.

5.3CVSS5.4AI score0.00078EPSS

CVE•added 2024/12/10 11:15 p.m.•58 views

CVE-2024-55653

PwnDoc is a penetration test report generator. In versions up to and including 0.5.3, an authenticated user is able to crash the backend by raising a UnhandledPromiseRejection on audits which exits the backend. The user doesn't need to know the audit id, since a bad audit id will also raise the rej...

6.5CVSS6.8AI score0.00071EPSS

CVE•added 2024/12/10 5:15 p.m.•53 views

CVE-2024-55602

PwnDoc is a penetration test report generator. Prior to commit 1d4219c596f4f518798492e48386a20c6e9a2fe6, an authenticated user who is able to update and download templates can inject path traversal (../) sequences into the file extension property to read arbitrary files on the system. Commit 1d4219...

8.5CVSS7.4AI score0.00052EPSS

CVE•added 2025/02/28 9:15 p.m.•51 views

CVE-2025-27410

PwnDoc is a penetration test reporting application. Prior to version 1.2.0, the backup restore functionality is vulnerable to path traversal in the TAR entry's name, allowing an attacker to overwrite any file on the system with their content. By overwriting an included .js file and restarting the c...

6.5CVSS8.3AI score0.1334EPSS

CVE•added 2025/02/28 9:15 p.m.•48 views

CVE-2025-27413

PwnDoc is a penetration test reporting application. Prior to version 1.2.0, the backup restore functionality allows an administrator to import raw data into the database, including Path Traversal (../) sequences. This is problematic for the template update functionality as it uses the path from the...

6.5CVSS7.6AI score0.00294EPSS

CVE•added 2021/07/19 8:15 p.m.•47 views

CVE-2021-31590

PwnDoc all versions until 0.4.0 (2021-08-23) has incorrect JSON Webtoken handling, leading to incorrect access control. With a valid JSON Webtoken that is used for authentication and authorization, a user can keep his admin privileges even if he is downgraded to the "user" privilege. Even after a u...

9CVSS8.8AI score0.01493EPSS

CVE•added 2024/12/12 2:15 a.m.•45 views

CVE-2024-55652

PenDoc is a penetration testing reporting application. Prior to commit 1d4219c596f4f518798492e48386a20c6e9a2fe6, an attacker can write a malicious docx template containing expressions that escape the JavaScript sandbox to execute arbitrary code on the system. An attacker who can control the content...

6.5CVSS7.8AI score0.0005EPSS

CVE•added 2025/01/20 4:15 p.m.•43 views

CVE-2025-23044

PwnDoc is a penetration test report generator. There is no CSRF protection in pwndoc, allowing attackers to send requests on a logged-in user's behalf. This includes GET and POST requests due to the missing SameSite= attribute on cookies and the ability to refresh cookies. Commit 14acb704891245bf17...

8.1CVSS6.6AI score0.0003EPSS