Skip to main content

Docassemble

3 CVEs product

Monthly

CVE-2024-27292 PyPI HIGH POC PATCH THREAT This Week

Docassemble is an expert system for guided interviews and document assembly. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Authentication Bypass Docassemble
NVD GitHub
CVSS 3.1
7.5
EPSS
69.5%
CVE-2024-27291 PyPI MEDIUM PATCH This Month

Docassemble is an expert system for guided interviews and document assembly. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Open Redirect vulnerability could allow attackers to redirect users to malicious websites via URL manipulation.

Open Redirect Docassemble
NVD GitHub
CVSS 3.1
6.1
EPSS
0.4%
CVE-2024-27290 PyPI MEDIUM PATCH This Month

Docassemble is an expert system for guided interviews and document assembly. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

XSS Docassemble
NVD GitHub
CVSS 3.1
6.1
EPSS
0.4%
EPSS 69% CVSS 7.5
HIGH POC PATCH THREAT This Week

Docassemble is an expert system for guided interviews and document assembly. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Authentication Bypass Docassemble
NVD GitHub
EPSS 0% CVSS 6.1
MEDIUM PATCH This Month

Docassemble is an expert system for guided interviews and document assembly. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Open Redirect vulnerability could allow attackers to redirect users to malicious websites via URL manipulation.

Open Redirect Docassemble
NVD GitHub
EPSS 0% CVSS 6.1
MEDIUM PATCH This Month

Docassemble is an expert system for guided interviews and document assembly. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

XSS Docassemble
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy