Filtered by vendor Diagrams
Subscriptions
Total
26 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2022-2014 | 1 Diagrams | 1 Drawio | 2022-06-15 | 5.4 Medium |
Code Injection in GitHub repository jgraph/drawio prior to 19.0.2. | ||||
CVE-2022-1815 | 1 Diagrams | 1 Drawio | 2022-06-07 | 7.5 High |
Exposure of Sensitive Information to an Unauthorized Actor in GitHub repository jgraph/drawio prior to 18.1.2. | ||||
CVE-2022-1784 | 1 Diagrams | 1 Drawio | 2022-06-07 | 7.5 High |
Server-Side Request Forgery (SSRF) in GitHub repository jgraph/drawio prior to 18.0.8. | ||||
CVE-2022-1711 | 1 Diagrams | 1 Drawio | 2022-06-07 | 7.5 High |
Server-Side Request Forgery (SSRF) in GitHub repository jgraph/drawio prior to 18.0.5. | ||||
CVE-2022-1723 | 1 Diagrams | 1 Drawio | 2022-06-07 | 7.5 High |
Server-Side Request Forgery (SSRF) in GitHub repository jgraph/drawio prior to 18.0.6. | ||||
CVE-2022-1575 | 1 Diagrams | 1 Drawio | 2022-05-12 | 9.6 Critical |
Arbitrary Code Execution through Sanitizer Bypass in GitHub repository jgraph/drawio prior to 18.0.0. - Arbitrary (remote) code execution in the desktop app. - Stored XSS in the web app. |