Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

  1. Reconshell
  2. Vulnerabilities (CVE)
Filtered by vendor Casbin Subscribe
Filtered by product Casdoor
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-44942 1 Casbin 1 Casdoor 2022-12-08 N/A 8.1 HIGH
Casdoor before v1.126.1 was discovered to contain an arbitrary file deletion vulnerability via the uploadFile function.
CVE-2022-38638 1 Casbin 1 Casdoor 2022-09-15 N/A 9.1 CRITICAL
Casdoor v1.97.3 was discovered to contain an arbitrary file write vulnerability via the fullFilePath parameter at /api/upload-resource.
CVE-2022-24124 1 Casbin 1 Casdoor 2022-04-05 5.0 MEDIUM 7.5 HIGH
The query API in Casdoor before 1.13.1 has a SQL injection vulnerability related to the field and value parameters, as demonstrated by api/get-organizations.