Vulnerabilities (CVE)

Filtered by vendor Weseek Subscribe
Total 42 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2018-0653 1 Weseek 1 Growi 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
Cross-site scripting vulnerability in GROWI v.3.1.11 and earlier allows remote attackers to inject arbitrary web script or HTML via Wiki page view.
CVE-2018-0652 1 Weseek 1 Growi 2024-11-21 3.5 LOW 4.8 MEDIUM
Cross-site scripting vulnerability in GROWI v.3.1.11 and earlier allows remote authenticated attackers to inject arbitrary web script or HTML via the UserGroup Management section of admin page.