Skip to main content

Sunbirded Portal

6 CVEs product

Monthly

CVE-2025-70027 HIGH This Week

An issue pertaining to CWE-918: Server-Side Request Forgery was discovered in Sunbird-Ed SunbirdEd-portal v1.13.4. This allows attackers to obtain sensitive information [CVSS 7.5 HIGH]

SSRF Sunbirded Portal
NVD GitHub VulDB
CVSS 3.1
7.5
EPSS
0.0%
CVE-2025-70028 HIGH This Week

An issue pertaining to CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') was discovered in Sunbird-Ed SunbirdEd-portal v1.13.4. [CVSS 7.5 HIGH]

Path Traversal Sunbirded Portal
NVD GitHub
CVSS 3.1
7.5
EPSS
0.0%
CVE-2025-70031 HIGH This Week

An issue pertaining to CWE-352: Cross-Site Request Forgery was discovered in Sunbird-Ed SunbirdEd-portal v1.13.4. [CVSS 8.8 HIGH]

CSRF Sunbirded Portal
NVD GitHub
CVSS 3.1
8.8
EPSS
0.0%
CVE-2025-70030 HIGH This Week

An issue pertaining to CWE-1333: Inefficient Regular Expression Complexity (4.19) was discovered in Sunbird-Ed SunbirdEd-portal v1.13.4. [CVSS 7.5 HIGH]

Denial Of Service Sunbirded Portal
NVD GitHub
CVSS 3.1
7.5
EPSS
0.0%
CVE-2025-70033 MEDIUM This Month

An issue pertaining to CWE-79: Improper Neutralization of Input During Web Page Generation was discovered in Sunbird-Ed SunbirdEd-portal v1.13.4. [CVSS 5.4 MEDIUM]

XSS Sunbirded Portal
NVD GitHub
CVSS 3.1
5.4
EPSS
0.0%
CVE-2025-70029 HIGH This Week

An issue in Sunbird-Ed SunbirdEd-portal v1.13.4 allows attackers to obtain sensitive information. The application disables TLS/SSL certificate validation by setting 'rejectUnauthorized': false in HTTP request options [CVSS 7.5 HIGH]

Information Disclosure Sunbirded Portal
NVD GitHub
CVSS 3.1
7.5
EPSS
0.0%
EPSS 0% CVSS 7.5
HIGH This Week

An issue pertaining to CWE-918: Server-Side Request Forgery was discovered in Sunbird-Ed SunbirdEd-portal v1.13.4. This allows attackers to obtain sensitive information [CVSS 7.5 HIGH]

SSRF Sunbirded Portal
NVD GitHub VulDB
EPSS 0% CVSS 7.5
HIGH This Week

An issue pertaining to CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') was discovered in Sunbird-Ed SunbirdEd-portal v1.13.4. [CVSS 7.5 HIGH]

Path Traversal Sunbirded Portal
NVD GitHub
EPSS 0% CVSS 8.8
HIGH This Week

An issue pertaining to CWE-352: Cross-Site Request Forgery was discovered in Sunbird-Ed SunbirdEd-portal v1.13.4. [CVSS 8.8 HIGH]

CSRF Sunbirded Portal
NVD GitHub
EPSS 0% CVSS 7.5
HIGH This Week

An issue pertaining to CWE-1333: Inefficient Regular Expression Complexity (4.19) was discovered in Sunbird-Ed SunbirdEd-portal v1.13.4. [CVSS 7.5 HIGH]

Denial Of Service Sunbirded Portal
NVD GitHub
EPSS 0% CVSS 5.4
MEDIUM This Month

An issue pertaining to CWE-79: Improper Neutralization of Input During Web Page Generation was discovered in Sunbird-Ed SunbirdEd-portal v1.13.4. [CVSS 5.4 MEDIUM]

XSS Sunbirded Portal
NVD GitHub
EPSS 0% CVSS 7.5
HIGH This Week

An issue in Sunbird-Ed SunbirdEd-portal v1.13.4 allows attackers to obtain sensitive information. The application disables TLS/SSL certificate validation by setting 'rejectUnauthorized': false in HTTP request options [CVSS 7.5 HIGH]

Information Disclosure Sunbirded Portal
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy