Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8
CVE-2025-27920
- EPSS 52.02%
- Veröffentlicht 05.05.2025 00:00:00
- Zuletzt bearbeitet 05.11.2025 19:28:43
Output Messenger before 2.0.63 was vulnerable to a directory traversal attack through improper file path handling. By using ../ sequences in parameters, attackers could access sensitive files outside the intended directory, potentially leading to con...
6.1
CVE-2025-27921
- EPSS 0.18%
- Veröffentlicht 05.05.2025 00:00:00
- Zuletzt bearbeitet 13.06.2025 18:40:52
A reflected cross-site scripting (XSS) vulnerability was discovered in Output Messenger before 2.0.63, where unsanitized input could be injected into the web application’s response. This vulnerability occurs when user-controlled input is reflected ba...
1