CVSS: 3.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-4304 – Business Logic Errors in froxlor/froxlor
https://notcve.org/view.php?id=CVE-2023-4304
Business Logic Errors in GitHub repository froxlor/froxlor prior to 2.0.22,2.1.0. Errores de lógica de negocio en el repositorio GitHub froxlor/froxlor anterior a 2.0.22,2.1.0. • https://github.com/froxlor/froxlor/commit/ce9a5f97a3edb30c7d33878765d3c014a6583597 https://huntr.dev/bounties/59fe5037-b253-4b0f-be69-1d2e4af8b4a9 • CWE-840: Business Logic Errors •
CVSS: 9.1EPSS: 0%CPEs: 1EXPL: 1CVE-2023-3668 – Improper Encoding or Escaping of Output in froxlor/froxlor
https://notcve.org/view.php?id=CVE-2023-3668
Improper Encoding or Escaping of Output in GitHub repository froxlor/froxlor prior to 2.0.21. • https://github.com/froxlor/froxlor/commit/03b5a921ff308eeab21bf9d240f27783c8591965 https://huntr.dev/bounties/df8cccf4-a340-440e-a7e0-1b42e757d66e • CWE-116: Improper Encoding or Escaping of Output •
CVSS: 5.4EPSS: 0%CPEs: 1EXPL: 1CVE-2023-3192 – Session Fixation in froxlor/froxlor
https://notcve.org/view.php?id=CVE-2023-3192
Session Fixation in GitHub repository froxlor/froxlor prior to 2.1.0. Fijación de sesión en el repositorio GitHub froxlor/froxlor anterior a 2.1.0. • https://github.com/froxlor/froxlor/commit/94d9c3eedf31bc8447e3aa349e32880dde02ee52 https://huntr.dev/bounties/f3644772-9c86-4f55-a0fa-aeb11f411551 • CWE-384: Session Fixation •
CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 1CVE-2023-3172 – Path Traversal in froxlor/froxlor
https://notcve.org/view.php?id=CVE-2023-3172
Path Traversal in GitHub repository froxlor/froxlor prior to 2.0.20. Salto de ruta en el repositorio de GitHub de froxlor/froxlor anterior a 2.0.20. • https://github.com/froxlor/froxlor/commit/da810ea95393dfaec68a70e30b7c887c50563a7e https://huntr.dev/bounties/e50966cd-9222-46b9-aedc-1feb3f2a0b0e • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-3173 – Improper Restriction of Excessive Authentication Attempts in froxlor/froxlor
https://notcve.org/view.php?id=CVE-2023-3173
Improper Restriction of Excessive Authentication Attempts in GitHub repository froxlor/froxlor prior to 2.0.20. Restricción inapropiada de intentos de autenticación excesivos en el repositorio froxlor de GitHub en versiones anteriores a 2.0.20. • https://github.com/froxlor/froxlor/commit/464216072456efb35b4541c58e7016463dfbd9a6 https://huntr.dev/bounties/4d715f76-950d-4251-8139-3dffea798f14 • CWE-307: Improper Restriction of Excessive Authentication Attempts •