Matiasdesuu

Thinkdashboard

3 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.1

CVE-2025-64177

Exploit
  • EPSS 0.05%
  • Veröffentlicht 06.11.2025 21:32:43
  • Zuletzt bearbeitet 21.11.2025 16:34:24

ThinkDashboard is a self-hosted bookmark dashboard built with Go and vanilla JavaScript. In versions 0.6.7 and below, there is a stored Cross-Site Scripting (XSS) vulnerability in the dashboard, which can exploited when a user clicks on a malicious b...

5.3

CVE-2025-64327

Exploit
  • EPSS 0.06%
  • Veröffentlicht 06.11.2025 21:15:44
  • Zuletzt bearbeitet 21.11.2025 16:40:42

ThinkDashboard is a self-hosted bookmark dashboard built with Go and vanilla JavaScript. Versions 0.6.7 and below contain a Blind Server-Side Request Forgery (SSRF) vulnerability, in its `/api/ping?url= endpoint`. This allows an attacker to make arbi...

6.1

CVE-2025-64176

Exploit
  • EPSS 0.11%
  • Veröffentlicht 06.11.2025 21:12:38
  • Zuletzt bearbeitet 21.11.2025 16:40:12

ThinkDashboard is a self-hosted bookmark dashboard built with Go and vanilla JavaScript. In versions 0.6.7 and below, an attacker can upload any file they wish to the /data directory of the web application via the backup import feature. When importin...