Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by vendor Froxlor Subscribe
Total 37 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-6069 1 Froxlor 1 Froxlor 2024-02-28 N/A 8.8 HIGH
Improper Link Resolution Before File Access in GitHub repository froxlor/froxlor prior to 2.1.0.
CVE-2023-50256 1 Froxlor 1 Froxlor 2024-02-28 N/A 7.5 HIGH
Froxlor is open source server administration software. Prior to version 2.1.2, it was possible to submit the registration form with the essential fields, such as the username and password, left intentionally blank. This inadvertent omission allowed for a bypass of the mandatory field requirements (e.g. surname, company name) established by the system. Version 2.1.2 fixes this issue.
CVE-2023-4304 1 Froxlor 1 Froxlor 2024-02-28 N/A 2.7 LOW
Business Logic Errors in GitHub repository froxlor/froxlor prior to 2.0.22,2.1.0.
CVE-2023-4829 1 Froxlor 1 Froxlor 2024-02-28 N/A 5.4 MEDIUM
Cross-site Scripting (XSS) - Stored in GitHub repository froxlor/froxlor prior to 2.0.22.
CVE-2023-5564 1 Froxlor 1 Froxlor 2024-02-28 N/A 4.8 MEDIUM
Cross-site Scripting (XSS) - Stored in GitHub repository froxlor/froxlor prior to 2.1.0-dev1.
CVE-2023-3668 1 Froxlor 1 Froxlor 2024-02-28 N/A 7.2 HIGH
Improper Encoding or Escaping of Output in GitHub repository froxlor/froxlor prior to 2.0.21.
CVE-2023-2666 1 Froxlor 1 Froxlor 2024-02-28 N/A 7.5 HIGH
Allocation of Resources Without Limits or Throttling in GitHub repository froxlor/froxlor prior to 2.0.16.
CVE-2023-2034 1 Froxlor 1 Froxlor 2024-02-28 N/A 8.8 HIGH
Unrestricted Upload of File with Dangerous Type in GitHub repository froxlor/froxlor prior to 2.0.14.
CVE-2023-3172 1 Froxlor 1 Froxlor 2024-02-28 N/A 7.2 HIGH
Path Traversal in GitHub repository froxlor/froxlor prior to 2.0.20.
CVE-2023-3192 1 Froxlor 1 Froxlor 2024-02-28 N/A 5.4 MEDIUM
Session Fixation in GitHub repository froxlor/froxlor prior to 2.1.0.
CVE-2023-3173 1 Froxlor 1 Froxlor 2024-02-28 N/A 9.8 CRITICAL
Improper Restriction of Excessive Authentication Attempts in GitHub repository froxlor/froxlor prior to 2.0.20.
CVE-2023-0565 1 Froxlor 1 Froxlor 2024-02-28 N/A 4.9 MEDIUM
Business Logic Errors in GitHub repository froxlor/froxlor prior to 2.0.10.
CVE-2022-4868 1 Froxlor 1 Froxlor 2024-02-28 N/A 4.3 MEDIUM
Improper Authorization in GitHub repository froxlor/froxlor prior to 2.0.0-beta1.
CVE-2023-0566 1 Froxlor 1 Froxlor 2024-02-28 N/A 4.8 MEDIUM
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in froxlor/froxlor prior to 2.0.10.
CVE-2023-1307 1 Froxlor 1 Froxlor 2024-02-28 N/A 9.8 CRITICAL
Authentication Bypass by Primary Weakness in GitHub repository froxlor/froxlor prior to 2.0.13.
CVE-2023-0315 1 Froxlor 1 Froxlor 2024-02-28 N/A 8.8 HIGH
Command Injection in GitHub repository froxlor/froxlor prior to 2.0.8.
CVE-2023-0671 1 Froxlor 1 Froxlor 2024-02-28 N/A 8.8 HIGH
Code Injection in GitHub repository froxlor/froxlor prior to 2.0.10.
CVE-2023-1033 1 Froxlor 1 Froxlor 2024-02-28 N/A 8.8 HIGH
Cross-Site Request Forgery (CSRF) in GitHub repository froxlor/froxlor prior to 2.0.11.
CVE-2023-0564 1 Froxlor 1 Froxlor 2024-02-28 N/A 7.5 HIGH
Weak Password Requirements in GitHub repository froxlor/froxlor prior to 2.0.10.
CVE-2022-4867 1 Froxlor 1 Froxlor 2024-02-28 N/A 4.3 MEDIUM
Cross-Site Request Forgery (CSRF) in GitHub repository froxlor/froxlor prior to 2.0.0-beta1.