Growi Security Vulnerabilities and Issues — Growi CVE List

Lucene search

WeseekGrowi

2 matches found

CVE•added 2021/06/22 2:15 a.m.•71 views

CVE-2021-20736

NoSQL injection vulnerability in GROWI versions prior to v4.2.20 allows a remote attacker to obtain and/or alter the information stored in the database via unspecified vectors.

9.1CVSS8.8AI score0.0035EPSS

CVE•added 2021/06/22 2:15 a.m.•64 views

CVE-2021-20737

Improper authentication vulnerability in GROWI versions prior to v4.2.20 allows a remote attacker to view the unauthorized pages without access privileges via unspecified vectors.

6.5CVSS6.6AI score0.00255EPSS