Yourls Vulnerabilità

Sequenza temporale

Versione

1.72
1.8.02
1.8.12
1.8.22
1.52

Contromisure

Official Fix4
Temporary Fix0
Workaround0
Unavailable0
Not Defined4

Sfruttabilità

High0
Functional0
Proof-of-Concept0
Unproven0
Not Defined8

Accesso al vettore

Not Defined0
Physical0
Local0
Adjacent0
Network8

Autenticazione

Not Defined0
High2
Low0
None6

Interazione dell'utente

Not Defined0
Required6
None2

C3BM Index

CVSSv3 Base

≤10
≤20
≤30
≤42
≤54
≤62
≤70
≤80
≤90
≤100

CVSSv3 Temp

≤10
≤20
≤30
≤42
≤54
≤62
≤70
≤80
≤90
≤100

VulDB

≤10
≤22
≤30
≤40
≤54
≤62
≤70
≤80
≤90
≤100

NVD

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

CNA

≤10
≤20
≤30
≤42
≤50
≤60
≤72
≤80
≤90
≤100

Fornitore

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploiter 0 giorni

<1k6
<2k0
<5k2
<10k0
<25k0
<50k0
<100k0
≥100k0

Exploiter aujourd'hui

<1k8
<2k0
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0

Sfrutta il volume del mercato

🔴 CTI Attività

Affected Versions (8): 1.5, 1.7, 1.7.1, 1.7.2, 1.7.3, 1.8, 1.8.1, 1.8.2

Data di pubblicazioneBaseTempVulnerabilità0dayOggiSfrConCTICVE
03/04/20223.93.8yourls cross site request forgery$0-$5k$0-$5kNot DefinedOfficial Fix0.03CVE-2022-0088
15/09/20216.16.0yourls Web Page Generation cross site scripting$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-3785
15/09/20214.34.2yourls Web Page Generation cross site scripting$0-$5k$0-$5kNot DefinedOfficial Fix0.02CVE-2021-3783
26/08/20216.56.2YOURLS escalazione di privilegi$0-$5k$0-$5kNot DefinedOfficial Fix0.02CVE-2021-3734
07/08/20198.58.5YOURLS API Type Casting autenticazione debole$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2019-14537
09/12/20144.34.3Yourls cross site scripting$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2014-8488
23/09/20115.35.3YOURLS Error Message rivelazione di un 'informazione$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2011-3824

PrecedenteVisione D'insiemeIl prossimo

Might our Artificial Intelligence support you?

Check our Alexa App!