AnswerCVEs & Vulnerabilities

34 CVEs affecting Answer products, tracked from the National Vulnerability Database, with CVSS/EPSS scores and exploitation status.

Most Affected Products

answer 34
CVE-2023-4815HIGH

Missing Authentication for Critical Function in GitHub repository answerdev/answer prior to v1.1.3.

7 Sep 2023
8.8
CVSS
CVE-2023-4127MEDIUM

Race Condition within a Thread in GitHub repository answerdev/answer prior to v1.1.1.

3 Aug 2023
5.9
CVSS
CVE-2023-4126HIGH

Insufficient Session Expiration in GitHub repository answerdev/answer prior to v1.1.0.

3 Aug 2023
8.8
CVSS
CVE-2023-4125HIGH

Weak Password Requirements in GitHub repository answerdev/answer prior to v1.1.0.

3 Aug 2023
8.8
CVSS
CVE-2023-4124MEDIUM

Missing Authorization in GitHub repository answerdev/answer prior to v1.1.1.

3 Aug 2023
6.5
CVSS
CVE-2023-2590LOW

Missing Authorization in GitHub repository answerdev/answer prior to 1.0.9.

9 May 2023
3.5
CVSS
CVE-2023-1976HIGH

Password Aging with Long Expiration in GitHub repository answerdev/answer prior to 1.0.6.

11 Apr 2023
8.8
CVSS
CVE-2023-1975MEDIUM

Insertion of Sensitive Information Into Sent Data in GitHub repository answerdev/answer prior to 1.0.8.

11 Apr 2023
6.5
CVSS
CVE-2023-1974MEDIUM

Exposure of Sensitive Information Through Metadata in GitHub repository answerdev/answer prior to 1.0.8.

11 Apr 2023
6.5
CVSS
CVE-2023-1543HIGH

Insufficient Session Expiration in GitHub repository answerdev/answer prior to 1.0.6.

21 Mar 2023
8.8
CVSS
CVE-2023-1542MEDIUM

Business Logic Errors in GitHub repository answerdev/answer prior to 1.0.6.

21 Mar 2023
5.4
CVSS
CVE-2023-1541LOW

Business Logic Errors in GitHub repository answerdev/answer prior to 1.0.6.

21 Mar 2023
3.8
CVSS
CVE-2023-1540MEDIUM

Observable Response Discrepancy in GitHub repository answerdev/answer prior to 1.0.6.

21 Mar 2023
5.3
CVSS
CVE-2023-1539MEDIUM

Improper Restriction of Excessive Authentication Attempts in GitHub repository answerdev/answer prior to 1.0.6.

21 Mar 2023
5.3
CVSS
CVE-2023-1538MEDIUM

Observable Timing Discrepancy in GitHub repository answerdev/answer prior to 1.0.6.

21 Mar 2023
5.3
CVSS
CVE-2023-1537CRITICAL

Authentication Bypass by Capture-replay in GitHub repository answerdev/answer prior to 1.0.6.

21 Mar 2023
9.8
CVSS
CVE-2023-1536MEDIUM

Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.7.

21 Mar 2023
5.4
CVSS
CVE-2023-1535MEDIUM

Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.7.

21 Mar 2023
5.4
CVSS
CVE-2023-1245MEDIUM

Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.6.

7 Mar 2023
5.4
CVSS
CVE-2023-1244MEDIUM

Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.6.

7 Mar 2023
5.4
CVSS
CVE-2023-1243MEDIUM

Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.6.

7 Mar 2023
4.8
CVSS
CVE-2023-1242MEDIUM

Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.6.

7 Mar 2023
5.4
CVSS
CVE-2023-1241MEDIUM

Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.6.

7 Mar 2023
5.4
CVSS
CVE-2023-1240MEDIUM

Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.6.

7 Mar 2023
5.4
CVSS
CVE-2023-1239MEDIUM

Cross-site Scripting (XSS) - Reflected in GitHub repository answerdev/answer prior to 1.0.6.

7 Mar 2023
4.8
CVSS
CVE-2023-1238MEDIUM

Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.6.

7 Mar 2023
5.4
CVSS
CVE-2023-1237MEDIUM

Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.6.

7 Mar 2023
5.4
CVSS
CVE-2023-0934MEDIUM

Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.5.

21 Feb 2023
5.4
CVSS
CVE-2023-0744CRITICALpoc

Improper Access Control in GitHub repository answerdev/answer prior to 1.0.4.

8 Feb 2023
9.8
CVSS
CVE-2023-0743CRITICAL

Cross-site Scripting (XSS) - Generic in GitHub repository answerdev/answer prior to 1.0.4.

8 Feb 2023
9.0
CVSS
CVE-2023-0742CRITICAL

Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.4.

8 Feb 2023
9.0
CVSS
CVE-2023-0741CRITICAL

Cross-site Scripting (XSS) - DOM in GitHub repository answerdev/answer prior to 1.0.4.

8 Feb 2023
9.0
CVSS
CVE-2023-0740CRITICAL

Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.4.

8 Feb 2023
9.0
CVSS
CVE-2023-0739MEDIUM

Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') in GitHub repository answerdev/answer prior to 1.0.4.

8 Feb 2023
6.8
CVSS
← PrevPage 1 / 1Next →