Filtered by vendor Diagrams
Subscriptions
Filtered by product Drawio
Subscriptions
Total
26 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2022-1575 | 1 Diagrams | 1 Drawio | 2024-08-03 | 9.6 Critical |
Arbitrary Code Execution through Sanitizer Bypass in GitHub repository jgraph/drawio prior to 18.0.0. - Arbitrary (remote) code execution in the desktop app. - Stored XSS in the web app. | ||||
CVE-2023-3974 | 1 Diagrams | 1 Drawio | 2024-08-02 | 9.8 Critical |
OS Command Injection in GitHub repository jgraph/drawio prior to 21.4.0. | ||||
CVE-2023-3975 | 1 Diagrams | 1 Drawio | 2024-08-02 | 9.8 Critical |
OS Command Injection in GitHub repository jgraph/drawio prior to 21.5.0. | ||||
CVE-2023-3973 | 1 Diagrams | 1 Drawio | 2024-08-02 | 6.1 Medium |
Cross-site Scripting (XSS) - Reflected in GitHub repository jgraph/drawio prior to 21.6.3. | ||||
CVE-2023-3398 | 1 Diagrams | 1 Drawio | 2024-08-02 | 7.5 High |
Denial of Service in GitHub repository jgraph/drawio prior to 18.1.3. | ||||
CVE-2023-3026 | 1 Diagrams | 1 Drawio | 2024-08-02 | 6.1 Medium |
Cross-site Scripting (XSS) - Stored in GitHub repository jgraph/drawio prior to 21.2.8. |