Skip to main content

Dhis 2

10 CVEs product

Monthly

CVE-2023-32060 MEDIUM This Month

DHIS2 Core contains the service layer and Web API for DHIS2, an information system for data capture. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Google Authentication Bypass Dhis 2
NVD GitHub
CVSS 3.1
6.5
EPSS
0.5%
CVE-2023-31139 HIGH This Week

DHIS2 Core contains the service layer and Web API for DHIS2, an information system for data capture. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Dhis 2
NVD GitHub
CVSS 3.1
7.5
EPSS
0.6%
CVE-2023-31138 MEDIUM This Month

DHIS2 Core contains the service layer and Web API for DHIS2, an information system for data capture. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Authentication Bypass Dhis 2
NVD GitHub
CVSS 3.1
6.5
EPSS
0.6%
CVE-2022-41948 HIGH This Week

DHIS 2 is an open source information system for data capture, management, validation, analytics and visualization. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Privilege Escalation Dhis 2
NVD GitHub
CVSS 3.1
7.2
EPSS
0.6%
CVE-2022-41947 MEDIUM This Month

DHIS 2 is an open source information system for data capture, management, validation, analytics and visualization. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Dhis 2
NVD GitHub
CVSS 3.1
5.4
EPSS
0.4%
CVE-2022-41949 MEDIUM PATCH This Month

DHIS 2 is an open source information system for data capture, management, validation, analytics and visualization. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. This Server-Side Request Forgery (SSRF) vulnerability could allow attackers to make the server perform requests to unintended internal or external resources.

SSRF Dhis 2
NVD GitHub
CVSS 3.1
4.3
EPSS
0.4%
CVE-2022-24848 HIGH PATCH This Week

DHIS2 is an information system for data capture, management, validation, analytics and visualization. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. This SQL Injection vulnerability could allow attackers to execute arbitrary SQL commands against the database.

SQLi Dhis 2
NVD GitHub
CVSS 3.1
8.8
EPSS
1.1%
CVE-2021-41187 HIGH This Week

DHIS 2 is an information system for data capture, management, validation, analytics and visualization. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

SQLi Dhis 2
NVD GitHub
CVSS 3.1
8.8
EPSS
0.8%
CVE-2021-39179 HIGH POC PATCH This Week

DHIS 2 is an information system for data capture, management, validation, analytics and visualization. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

SQLi Dhis 2
NVD GitHub
CVSS 3.1
8.8
EPSS
1.9%
CVE-2021-32704 HIGH This Week

DHIS 2 is an information system for data capture, management, validation, analytics and visualization. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

SQLi Dhis 2
NVD GitHub
CVSS 3.1
8.8
EPSS
0.8%
EPSS 1% CVSS 6.5
MEDIUM This Month

DHIS2 Core contains the service layer and Web API for DHIS2, an information system for data capture. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Google Authentication Bypass Dhis 2
NVD GitHub
EPSS 1% CVSS 7.5
HIGH This Week

DHIS2 Core contains the service layer and Web API for DHIS2, an information system for data capture. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Dhis 2
NVD GitHub
EPSS 1% CVSS 6.5
MEDIUM This Month

DHIS2 Core contains the service layer and Web API for DHIS2, an information system for data capture. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Authentication Bypass Dhis 2
NVD GitHub
EPSS 1% CVSS 7.2
HIGH This Week

DHIS 2 is an open source information system for data capture, management, validation, analytics and visualization. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Privilege Escalation Dhis 2
NVD GitHub
EPSS 0% CVSS 5.4
MEDIUM This Month

DHIS 2 is an open source information system for data capture, management, validation, analytics and visualization. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Dhis 2
NVD GitHub
EPSS 0% CVSS 4.3
MEDIUM PATCH This Month

DHIS 2 is an open source information system for data capture, management, validation, analytics and visualization. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. This Server-Side Request Forgery (SSRF) vulnerability could allow attackers to make the server perform requests to unintended internal or external resources.

SSRF Dhis 2
NVD GitHub
EPSS 1% CVSS 8.8
HIGH PATCH This Week

DHIS2 is an information system for data capture, management, validation, analytics and visualization. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. This SQL Injection vulnerability could allow attackers to execute arbitrary SQL commands against the database.

SQLi Dhis 2
NVD GitHub
EPSS 1% CVSS 8.8
HIGH This Week

DHIS 2 is an information system for data capture, management, validation, analytics and visualization. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

SQLi Dhis 2
NVD GitHub
EPSS 2% CVSS 8.8
HIGH POC PATCH This Week

DHIS 2 is an information system for data capture, management, validation, analytics and visualization. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

SQLi Dhis 2
NVD GitHub
EPSS 1% CVSS 8.8
HIGH This Week

DHIS 2 is an information system for data capture, management, validation, analytics and visualization. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

SQLi Dhis 2
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy