Vulnerabilities (CVE)

Filtered by vendor Cerebrate-project Subscribe

Filtered by product Cerebrate

CVSS v3 Filter

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 5 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2022-25320	1 Cerebrate-project	1 Cerebrate	2023-12-21	5.0 MEDIUM	5.3 MEDIUM
An issue was discovered in Cerebrate through 1.4. Username enumeration could occur.
CVE-2022-25321	1 Cerebrate-project	1 Cerebrate	2023-12-21	4.3 MEDIUM	6.1 MEDIUM
An issue was discovered in Cerebrate through 1.4. XSS could occur in the bookmarks component.
CVE-2022-25319	1 Cerebrate-project	1 Cerebrate	2023-12-21	5.0 MEDIUM	5.3 MEDIUM
An issue was discovered in Cerebrate through 1.4. Endpoints could be open even when not enabled.
CVE-2022-25318	1 Cerebrate-project	1 Cerebrate	2023-08-08	4.0 MEDIUM	4.3 MEDIUM
An issue was discovered in Cerebrate through 1.4. An incorrect sharing group ACL allowed an unprivileged user to edit and modify sharing groups.
CVE-2022-25317	1 Cerebrate-project	1 Cerebrate	2022-02-25	4.3 MEDIUM	6.1 MEDIUM
An issue was discovered in Cerebrate through 1.4. genericForm allows reflected XSS in form descriptions via a user-controlled description.