Vulnerabilidades em metersphere
17 resultadosCVE-2023-25573HIGHImproper access control to download file in metersphereEPSS 49.9%CVE-2022-23544HIGHServer-Side Request Forgery in Metersphere leads to Cross-Site ScriptingEPSS 1.6%CVE-2023-25814HIGHArbitrary File Read Vulnerability in metersphereEPSS 0.9%CVE-2022-23512HIGHMetersphere is vulnerable to Path Injection.EPSS 0.8%CVE-2022-46178HIGHPath Traversal In MeterSpere allows file upload to any pathEPSS 0.7%CVE-2023-30550MEDIUMIDOR vulnerability exists in metersphereEPSS 0.7%CVE-2023-35937MEDIUMMetersphere missing permission checkEPSS 0.6%CVE-2023-32699MEDIUMMeterSphere denial of service vulnerabilityEPSS 0.6%CVE-2023-41878MEDIUMWeak password of selenium VNC in MeterSphereEPSS 0.6%CVE-2023-37461MEDIUMPath traversal in metersphereEPSS 0.5%CVE-2024-32467MEDIUMMeteraphsere vulnerable to unauthorized viewing by workspace membersEPSS 0.5%CVE-2023-38494MEDIUMThe cloud version of the MeterSphere interface leaks some sensitive data without authenticationEPSS 0.4%CVE-2025-62604MEDIUMMeterSphere logic flaw allows retrieval of arbitrary user informationEPSS 0.4%CVE-2025-53639MEDIUMMetersphere has SQL Injection Vulnerability in Sorting FieldEPSS 0.4%CVE-2024-37161MEDIUMMeterSphere front-end editor stores XSS vulnerabilityEPSS 0.4%CVE-2023-50267MEDIUMMeterSphere horizontal privilege escalation vulnerability of resources in project scope.EPSS 0.3%CVE-2024-36118LOWUnauthorized viewing of workspace test cases in MeterSphereEPSS 0.3%