Exposição de Mautic
Marketing automation30
score de exposição
17.038
sites usam
0
em exploração
2
críticos
CVEs
36 resultadosCVE-2022-25772CRITICALA cross-site scripting (XSS) vulnerability in the web tracking component of Mautic before 4.3.0 allows remote attackers to inject executableEPSS 61.2%CVE-2021-27909MEDIUMXSS vulnerability on password reset pageEPSS 4.1%CVE-2021-27916HIGHRelative Path Traversal / Arbitrary File Deletion in Mautic (GrapesJS Builder)EPSS 0.8%CVE-2021-27910HIGHStored XSS vulnerability on Bounce Management CallbackEPSS 0.7%CVE-2021-27911HIGHXSS vulnerability on contacts viewEPSS 0.6%CVE-2021-27912HIGHXSS vulnerability on asset viewEPSS 0.6%CVE-2021-27915HIGHXSS Cross-site Scripting Stored (XSS) - Description fieldEPSS 0.6%CVE-2022-25775MEDIUMSQL Injection in dynamic ReportsEPSS 0.6%CVE-2024-2730MEDIUMPredictable Page Indexing Might Lead to Sensitive Data Exposure in MauticEPSS 0.5%CVE-2022-25769HIGHImproper regex in htaccess fileEPSS 0.5%CVE-2021-27913LOWUse of a Broken or Risky Cryptographic AlgorithmEPSS 0.5%CVE-2024-3448MEDIUMImproper Access Control Leads to Server-Side Request Forgery in MauticEPSS 0.4%CVE-2022-25777MEDIUMServer-Side Request Forgery in Asset sectionEPSS 0.4%CVE-2021-27914HIGHA cross-site scripting (XSS) vulnerability in the installer component of Mautic before 4.3.0 allows admins to inject executable javascriptEPSS 0.4%CVE-2022-25776HIGHSensitive Data Exposure due to inadequate user permission settingsEPSS 0.4%CVE-2025-13827HIGHGrapesJsBuilder File Upload allows all file uploadsEPSS 0.4%CVE-2024-2731MEDIUMImproper Access Control Issues Lead to Sensitive Data Exposure in MauticEPSS 0.4%CVE-2022-25774MEDIUMXSS in Notifications via saving DashboardsEPSS 0.4%CVE-2021-27908MEDIUMIn all versions prior to Mautic 3.3.2, secret parameters such as database credentials could be exposed publicly by an authorized admin user EPSS 0.3%CVE-2024-47059MEDIUMUsers enumeration - weak password loginEPSS 0.3%
Quer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →