CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 1CVE-2023-0337 – Cross-site Scripting (XSS) - Reflected in lirantal/daloradius
https://notcve.org/view.php?id=CVE-2023-0337
Cross-site Scripting (XSS) - Reflected in GitHub repository lirantal/daloradius prior to master-branch. Cross-site scripting (XSS) reflejado en el repositorio de GitHub lirantal/daloradius antes de la rama maestra. • https://github.com/lirantal/daloradius/commit/e77a769c7503e63a2e3c05262cb5f8f81a4a7bbe https://huntr.dev/bounties/1c50a5a5-3f55-4b6f-b861-4d5cdb6eb81b • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 1CVE-2023-0338 – Cross-site Scripting (XSS) - Reflected in lirantal/daloradius
https://notcve.org/view.php?id=CVE-2023-0338
Cross-site Scripting (XSS) - Reflected in GitHub repository lirantal/daloradius prior to master-branch. Cross-site scripting (XSS) reflejado en el repositorio de GitHub lirantal/daloradius antes de la rama maestra. • https://github.com/lirantal/daloradius/commit/e77a769c7503e63a2e3c05262cb5f8f81a4a7bbe https://huntr.dev/bounties/fcae1b67-db37-4d24-9137-8dda95573e77 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 1CVE-2023-0046 – Improper Restriction of Names for Files and Other Resources in lirantal/daloradius
https://notcve.org/view.php?id=CVE-2023-0046
Improper Restriction of Names for Files and Other Resources in GitHub repository lirantal/daloradius prior to master-branch. Restricción inadecuada de nombres de archivos y otros recursos en el repositorio de GitHub lirantal/daloradius antes de la rama maestra. • https://github.com/lirantal/daloradius/commit/2013c2d1231e99dac918247b69b198ded1f30a1c https://huntr.dev/bounties/2214dc41-f283-4342-95b1-34a2f4fea943 • CWE-641: Improper Restriction of Names for Files and Other Resources •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-0048 – Code Injection in lirantal/daloradius
https://notcve.org/view.php?id=CVE-2023-0048
Code Injection in GitHub repository lirantal/daloradius prior to master-branch. Inyección de código en el repositorio de GitHub lirantal/daloradius de la rama maestra. • https://github.com/lirantal/daloradius/commit/3650eea7277a5c278063214a5b71dbd7d77fc5aa https://huntr.dev/bounties/57abd666-4b9c-4f59-825d-1ec832153e79 • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 1CVE-2022-4630 – Sensitive Cookie Without 'HttpOnly' Flag in lirantal/daloradius
https://notcve.org/view.php?id=CVE-2022-4630
Sensitive Cookie Without 'HttpOnly' Flag in GitHub repository lirantal/daloradius prior to master. Cookie confidencial sin indicador 'HttpOnly' en el repositorio de GitHub lirantal/daloradius antes del maestro. • https://github.com/lirantal/daloradius/commit/6878619dc661b3009429777a1aeeb383ddc0166b https://huntr.dev/bounties/401661ee-40e6-4ee3-a925-3716b96ece5c • CWE-732: Incorrect Permission Assignment for Critical Resource CWE-1004: Sensitive Cookie Without 'HttpOnly' Flag •