Scaner-VSvulnerability catalog · v4.2

Home Catalog Sources CWE CAPEC ATT&CK Mitigations Products Vendors Docs

← Back to List

Ikus-soft›Applicationnvd

Rdiffweb

Vulnerabilities

42

Known exploited

0

Max CVSS

9.8

Top EPSS

0.0139

Severity breakdown

Critical

11

High

13

Medium

16

Low

2

Affected version ranges

< 2.4.1< 2.4.10< 2.4.2< 2.4.3< 2.4.5< 2.4.6< 2.4.7< 2.4.8< 2.4.9< 2.5.0< 2.5.2< 2.5.4< 2.5.5< 2.8.0< 2.8.4≤ 2.4.10≤ 2.4.9

Also matched as (raw): rdiffweb

Top vulnerabilities

CVE-2022-4724Improper Access Control in GitHub repository ikus060/rdiffweb prior to 2.5.5.

CVE-2022-4719Business Logic Errors in GitHub repository ikus060/rdiffweb prior to 2.5.5.

CVE-2022-4314Improper Privilege Management in GitHub repository ikus060/rdiffweb prior to 2.5.2.

CVE-2022-3457Origin Validation Error in GitHub repository ikus060/rdiffweb prior to 2.5.0a5.

CVE-2022-3456Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.5.0.

CVE-2022-3439Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.5.0.

CVE-2022-3363Business Logic Errors in GitHub repository ikus060/rdiffweb prior to 2.5.0a7.

CVE-2022-3362Insufficient Session Expiration in GitHub repository ikus060/rdiffweb prior to 2.5.0.

CVE-2022-3327Missing Authentication for Critical Function in GitHub repository ikus060/rdiffweb prior to 2.5.0a6.

CVE-2022-3273Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.5.0a4.

CVE-2022-3269Session Fixation in GitHub repository ikus060/rdiffweb prior to 2.4.7.

CVE-2023-5289Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.8.4.

CVE-2022-3221Cross-Site Request Forgery (CSRF) in GitHub repository ikus060/rdiffweb prior to 2.4.3.

CVE-2022-3179Weak Password Requirements in GitHub repository ikus060/rdiffweb prior to 2.4.2.

CVE-2022-3167Improper Restriction of Rendered UI Layers or Frames in GitHub repository ikus060/rdiffweb prior to 2.4.1.

CVE-2022-3389Path Traversal in GitHub repository ikus060/rdiffweb prior to 2.4.10.

CVE-2022-3371Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.5.0a3.

CVE-2022-3364Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.5.0a3.

CVE-2022-3298Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.4.8.

CVE-2022-3295Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.4.8.

CVE-2022-3290Improper Handling of Length Parameter Inconsistency in GitHub repository ikus060/rdiffweb prior to 2.4.8.

CVE-2022-3272Improper Handling of Length Parameter Inconsistency in GitHub repository ikus060/rdiffweb prior to 2.4.8.

CVE-2022-3174Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in GitHub repository ikus060/rdiffweb prior to 2.4.2.

CVE-2022-4722Authentication Bypass by Primary Weakness in GitHub repository ikus060/rdiffweb prior to 2.5.5.

CVE-2023-4138Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffweb prior to 2.8.0.

View vendor →Open in catalog with product filter →