Skip to main content

Daloradius

7 CVEs product

Monthly

CVE-2023-0338 MEDIUM POC PATCH This Month

Cross-site Scripting (XSS) - Reflected in GitHub repository lirantal/daloradius prior to master-branch. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

XSS Daloradius
NVD GitHub
CVSS 3.1
6.1
EPSS
0.5%
CVE-2023-0337 MEDIUM POC PATCH This Month

Cross-site Scripting (XSS) - Reflected in GitHub repository lirantal/daloradius prior to master-branch. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

XSS Daloradius
NVD GitHub
CVSS 3.1
6.1
EPSS
0.5%
CVE-2023-0048 HIGH POC PATCH THREAT This Week

Code Injection in GitHub repository lirantal/daloradius prior to master-branch. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

RCE Code Injection Daloradius
NVD GitHub
CVSS 3.1
8.8
EPSS
32.3%
CVE-2023-0046 HIGH POC PATCH This Week

Improper Restriction of Names for Files and Other Resources in GitHub repository lirantal/daloradius prior to master-branch. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

Information Disclosure Daloradius
NVD GitHub
CVSS 3.1
7.2
EPSS
1.0%
CVE-2022-4630 MEDIUM POC PATCH This Month

Sensitive Cookie Without 'HttpOnly' Flag in GitHub repository lirantal/daloradius prior to master. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Information Disclosure Daloradius
NVD GitHub
CVSS 3.1
5.3
EPSS
0.6%
CVE-2022-4366 HIGH POC PATCH This Week

Missing Authorization in GitHub repository lirantal/daloradius prior to master branch. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Authentication Bypass Daloradius
NVD GitHub
CVSS 3.1
7.5
EPSS
0.7%
CVE-2022-23475 HIGH POC PATCH This Week

daloRADIUS is an open source RADIUS web management application. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

CSRF PHP XSS Daloradius
NVD GitHub
CVSS 3.1
8.8
EPSS
0.5%
EPSS 0% CVSS 6.1
MEDIUM POC PATCH This Month

Cross-site Scripting (XSS) - Reflected in GitHub repository lirantal/daloradius prior to master-branch. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

XSS Daloradius
NVD GitHub
EPSS 0% CVSS 6.1
MEDIUM POC PATCH This Month

Cross-site Scripting (XSS) - Reflected in GitHub repository lirantal/daloradius prior to master-branch. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

XSS Daloradius
NVD GitHub
EPSS 32% CVSS 8.8
HIGH POC PATCH THREAT This Week

Code Injection in GitHub repository lirantal/daloradius prior to master-branch. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

RCE Code Injection Daloradius
NVD GitHub
EPSS 1% CVSS 7.2
HIGH POC PATCH This Week

Improper Restriction of Names for Files and Other Resources in GitHub repository lirantal/daloradius prior to master-branch. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

Information Disclosure Daloradius
NVD GitHub
EPSS 1% CVSS 5.3
MEDIUM POC PATCH This Month

Sensitive Cookie Without 'HttpOnly' Flag in GitHub repository lirantal/daloradius prior to master. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Information Disclosure Daloradius
NVD GitHub
EPSS 1% CVSS 7.5
HIGH POC PATCH This Week

Missing Authorization in GitHub repository lirantal/daloradius prior to master branch. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Authentication Bypass Daloradius
NVD GitHub
EPSS 0% CVSS 8.8
HIGH POC PATCH This Week

daloRADIUS is an open source RADIUS web management application. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

CSRF PHP XSS +1
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy