Vulnerabilities (CVE)

Filtered by vendor Raneto Project Subscribe
Filtered by product Raneto
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-35144 1 Raneto Project 1 Raneto 2024-11-21 N/A 4.8 MEDIUM
Renato v0.17.0 was discovered to contain a cross-site scripting (XSS) vulnerability.
CVE-2022-35143 1 Raneto Project 1 Raneto 2024-11-21 N/A 9.8 CRITICAL
Renato v0.17.0 employs weak password complexity requirements, allowing attackers to crack user passwords via brute-force attacks.
CVE-2022-35142 1 Raneto Project 1 Raneto 2024-11-21 N/A 7.5 HIGH
An issue in Renato v0.17.0 allows attackers to cause a Denial of Service (DoS) via a crafted payload injected into the Search parameter.