CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2023-4005 – Insufficient Session Expiration in fossbilling/fossbilling
https://notcve.org/view.php?id=CVE-2023-4005
Insufficient Session Expiration in GitHub repository fossbilling/fossbilling prior to 0.5.5. • https://github.com/fossbilling/fossbilling/commit/20c23b051eb690cb4ae60a257f6bb46eb3aae2d1 https://huntr.dev/bounties/f0aacce1-79bc-4765-95f1-7e824433b9e4 • CWE-613: Insufficient Session Expiration •
CVSS: 6.3EPSS: 0%CPEs: 1EXPL: 0CVE-2023-3568 – Open Redirect in alextselegidis/easyappointments
https://notcve.org/view.php?id=CVE-2023-3568
Open Redirect in GitHub repository alextselegidis/easyappointments prior to 1.5.0. • https://github.com/alextselegidis/easyappointments/commit/b37b46019553089db4f22eb2fe998bca84b2cb64 https://huntr.dev/bounties/e8d530db-a6a7-4f79-a95d-b77654cc04f8 • CWE-601: URL Redirection to Untrusted Site ('Open Redirect') •
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 1CVE-2023-3521 – Cross-site Scripting (XSS) - Reflected in fossbilling/fossbilling
https://notcve.org/view.php?id=CVE-2023-3521
Cross-site Scripting (XSS) - Reflected in GitHub repository fossbilling/fossbilling prior to 0.5.4. • https://github.com/fossbilling/fossbilling/commit/5eb516d4ebcb764db1b2edf9c8d0539e76ebde52 https://huntr.dev/bounties/76a3441d-7f75-4a8d-a7a0-95a7f5456eb0 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 8.0EPSS: 0%CPEs: 1EXPL: 0CVE-2023-3493 – Improper Neutralization of Formula Elements in a CSV File in fossbilling/fossbilling
https://notcve.org/view.php?id=CVE-2023-3493
Improper Neutralization of Formula Elements in a CSV File in GitHub repository fossbilling/fossbilling prior to 0.5.3. • https://github.com/fossbilling/fossbilling/commit/9402d6c4d44b77ccd68d98d1e6cedf782bd913dc https://huntr.dev/bounties/e9a272ca-b050-441d-a8cb-4fdecb76ccce • CWE-1236: Improper Neutralization of Formula Elements in a CSV File •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-3491 – Unrestricted Upload of File with Dangerous Type in fossbilling/fossbilling
https://notcve.org/view.php?id=CVE-2023-3491
Unrestricted Upload of File with Dangerous Type in GitHub repository fossbilling/fossbilling prior to 0.5.3. • https://github.com/fossbilling/fossbilling/commit/2ddb7438ee0d05f9a9d01555edcfed820960f114 https://huntr.dev/bounties/043bd900-ac78-44d2-a340-84ddd0bc4a1d • CWE-434: Unrestricted Upload of File with Dangerous Type •