Growi Security Vulnerabilities and Issues — Growi CVE List

Lucene search

WeseekGrowi

5 matches found

CVE•added 2020/12/16 8:15 a.m.•56 views

CVE-2020-5682

Improper input validation in GROWI versions prior to v4.2.3 (v4.2 Series), GROWI versions prior to v4.1.12 (v4.1 Series), and GROWI v3 series and earlier GROWI versions prior to v4.2.3 (v4.2 Series), GROWI versions prior to v4.1.12 (v4.1 Series), and GROWI v3 series and earlier allows remote attack...

7.5CVSS7.3AI score0.00846EPSS

CVE•added 2020/12/03 12:15 p.m.•38 views

CVE-2020-5676

GROWI v4.1.3 and earlier allow remote attackers to obtain information which is not allowed to access via unspecified vectors.

7.5CVSS7.3AI score0.00569EPSS

CVE•added 2020/12/03 12:15 p.m.•37 views

CVE-2020-5677

Reflected cross-site scripting vulnerability in GROWI v4.0.0 and earlier allows remote attackers to inject arbitrary script via unspecified vectors.

6.1CVSS6AI score0.00419EPSS

CVE•added 2020/12/16 8:15 a.m.•37 views

CVE-2020-5683

Directory traversal vulnerability in GROWI versions prior to v4.2.3 (v4.2 Series), GROWI versions prior to v4.1.12 (v4.1 Series), and GROWI v3 series and earlier GROWI versions prior to v4.2.3 (v4.2 Series), GROWI versions prior to v4.1.12 (v4.1 Series), and GROWI v3 series and earlier allows remot...

7.5CVSS7.4AI score0.00957EPSS

CVE•added 2020/12/03 12:15 p.m.•34 views

CVE-2020-5678

Stored cross-site scripting vulnerability in GROWI v3.8.1 and earlier allows remote attackers to inject arbitrary script via unspecified vectors.

6.1CVSS6AI score0.00419EPSS