aichy126

19 exploits Active since Feb 2023
CVE-2023-0744 WRITEUP CRITICAL WRITEUP
answerdev/answer < 1.0.4 - Account Takeover via Improper Access Control
Improper Access Control in GitHub repository answerdev/answer prior to 1.0.4.
CVSS 9.8
CVE-2023-0739 WRITEUP MEDIUM WRITEUP
answer < 1.0.4 - Race Condition
Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') in GitHub repository answerdev/answer prior to 1.0.4.
CVSS 6.8
CVE-2023-0743 WRITEUP CRITICAL WRITEUP
answer < 1.0.4 - Cross-Site Scripting
Cross-site Scripting (XSS) - Generic in GitHub repository answerdev/answer prior to 1.0.4.
CVSS 9.0
CVE-2023-0934 WRITEUP MEDIUM WRITEUP
answer < 1.0.5 - Stored Cross-Site Scripting
Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.5.
CVSS 5.4
CVE-2023-1239 WRITEUP MEDIUM WRITEUP
answer < 1.0.6 - Reflected Cross-Site Scripting
Cross-site Scripting (XSS) - Reflected in GitHub repository answerdev/answer prior to 1.0.6.
CVSS 4.8
CVE-2023-1240 WRITEUP MEDIUM WRITEUP
answer < 1.0.6 - Stored Cross-Site Scripting
Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.6.
CVSS 5.4
CVE-2023-1241 WRITEUP MEDIUM WRITEUP
answer < 1.0.6 - Stored Cross-Site Scripting
Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.6.
CVSS 5.4
CVE-2023-1242 WRITEUP MEDIUM WRITEUP
answer < 1.0.6 - Stored Cross-Site Scripting
Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.6.
CVSS 5.4
CVE-2023-1243 WRITEUP MEDIUM WRITEUP
answer < 1.0.6 - Stored Cross-Site Scripting
Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.6.
CVSS 4.8
CVE-2023-1244 WRITEUP MEDIUM WRITEUP
answer < 1.0.6 - Stored Cross-Site Scripting
Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.6.
CVSS 5.4
CVE-2023-1245 WRITEUP MEDIUM WRITEUP
answer < 1.0.6 - Stored Cross-Site Scripting
Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.6.
CVSS 5.4
CVE-2023-1535 WRITEUP MEDIUM WRITEUP
GitHub answerdev/answer <1.0.7 - XSS
Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.7.
CVSS 5.4
CVE-2023-1536 WRITEUP MEDIUM WRITEUP
GitHub answerdev/answer <1.0.7 - XSS
Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.7.
CVSS 5.4
CVE-2023-1537 WRITEUP CRITICAL WRITEUP
answerdev/answer <1.0.6 - Auth Bypass
Authentication Bypass by Capture-replay in GitHub repository answerdev/answer prior to 1.0.6.
CVSS 9.8
CVE-2023-1538 WRITEUP MEDIUM WRITEUP
answerdev/answer <1.0.6 - Info Disclosure
Observable Timing Discrepancy in GitHub repository answerdev/answer prior to 1.0.6.
CVSS 5.3
CVE-2023-1539 WRITEUP MEDIUM WRITEUP
GitHub answerdev/answer <1.0.6 - Info Disclosure
Improper Restriction of Excessive Authentication Attempts in GitHub repository answerdev/answer prior to 1.0.6.
CVSS 5.3
CVE-2023-1974 WRITEUP MEDIUM WRITEUP
GitHub answerdev/answer <1.0.8 - Info Disclosure
Exposure of Sensitive Information Through Metadata in GitHub repository answerdev/answer prior to 1.0.8.
CVSS 6.5
CVE-2023-1975 WRITEUP MEDIUM WRITEUP
GitHub answerdev/answer <1.0.8 - Info Disclosure
Insertion of Sensitive Information Into Sent Data in GitHub repository answerdev/answer prior to 1.0.8.
CVSS 6.5
CVE-2023-1976 WRITEUP HIGH WRITEUP
answerdev/answer <1.0.6 - Info Disclosure
Password Aging with Long Expiration in GitHub repository answerdev/answer prior to 1.0.6.
CVSS 8.8