Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by vendor Showdoc Subscribe
Filtered by product Showdoc
Total 41 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2018-19621 1 Showdoc 1 Showdoc 2026-06-17 4.3 MEDIUM 6.5 MEDIUM
server/index.php?s=/api/teamMember/save in ShowDoc 2.4.2 has a CSRF that can add members to a team.
CVE-2018-19620 1 Showdoc 1 Showdoc 2026-06-17 4.0 MEDIUM 4.3 MEDIUM
ShowDoc 2.4.1 allows remote attackers to edit other users' notes by navigating with a modified page_id.
CVE-2018-19609 1 Showdoc 1 Showdoc 2026-06-17 4.0 MEDIUM 6.5 MEDIUM
ShowDoc 2.4.1 allows remote attackers to obtain sensitive information by navigating with a modified page_id, as demonstrated by reading note content, or discovering a username in the JSON data at a diff URL.
CVE-2018-19433 1 Showdoc 1 Showdoc 2026-06-17 4.3 MEDIUM 6.1 MEDIUM
ShowDoc 2.4.1 has XSS via the lang parameter because install/database.php mishandles the $cur_lang value.
CVE-2018-16342 1 Showdoc 1 Showdoc 2026-06-17 3.5 LOW 5.4 MEDIUM
ShowDoc v1.8.0 has XSS via a new page.
CVE-2022-1034 1 Showdoc 1 Showdoc 2024-11-21 6.5 MEDIUM 7.2 HIGH
There is a Unrestricted Upload of File vulnerability in ShowDoc v2.10.3 in GitHub repository star7th/showdoc prior to 2.10.4.
CVE-2022-0967 1 Showdoc 1 Showdoc 2024-11-21 3.5 LOW 5.4 MEDIUM
Stored XSS via File Upload in star7th/showdoc in star7th/showdoc in GitHub repository star7th/showdoc prior to 2.10.4.
CVE-2022-0966 1 Showdoc 1 Showdoc 2024-11-21 3.5 LOW 5.4 MEDIUM
Stored XSS via File Upload in star7th/showdoc in GitHub repository star7th/showdoc prior to 2.4.10.
CVE-2022-0965 1 Showdoc 1 Showdoc 2024-11-21 3.5 LOW 5.4 MEDIUM
Stored XSS viva .ofd file upload in GitHub repository star7th/showdoc prior to 2.10.4.
CVE-2022-0964 1 Showdoc 1 Showdoc 2024-11-21 3.5 LOW 5.4 MEDIUM
Stored XSS viva .webmv file upload in GitHub repository star7th/showdoc prior to 2.10.4.
CVE-2022-0962 1 Showdoc 1 Showdoc 2024-11-21 3.5 LOW 5.4 MEDIUM
Stored XSS viva .webma file upload in GitHub repository star7th/showdoc prior to 2.10.4.
CVE-2022-0960 1 Showdoc 1 Showdoc 2024-11-21 3.5 LOW 5.4 MEDIUM
Stored XSS viva .properties file upload in GitHub repository star7th/showdoc prior to 2.10.4.
CVE-2022-0957 1 Showdoc 1 Showdoc 2024-11-21 3.5 LOW 5.4 MEDIUM
Stored XSS via File Upload in GitHub repository star7th/showdoc prior to 2.10.4.
CVE-2022-0956 1 Showdoc 1 Showdoc 2024-11-21 3.5 LOW 5.4 MEDIUM
Stored XSS via File Upload in GitHub repository star7th/showdoc prior to v.2.10.4.
CVE-2022-0951 1 Showdoc 1 Showdoc 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
File Upload Restriction Bypass leading to Stored XSS Vulnerability in GitHub repository star7th/showdoc prior to 2.10.4.
CVE-2022-0950 1 Showdoc 1 Showdoc 2024-11-21 3.5 LOW 5.4 MEDIUM
Unrestricted Upload of File with Dangerous Type in GitHub repository star7th/showdoc prior to 2.10.4.
CVE-2022-0946 1 Showdoc 1 Showdoc 2024-11-21 3.5 LOW 5.4 MEDIUM
Stored XSS viva cshtm file upload in GitHub repository star7th/showdoc prior to v2.10.4.
CVE-2022-0945 1 Showdoc 1 Showdoc 2024-11-21 3.5 LOW 5.4 MEDIUM
Stored XSS viva axd and cshtml file upload in star7th/showdoc in GitHub repository star7th/showdoc prior to v2.10.4.
CVE-2022-0942 1 Showdoc 1 Showdoc 2024-11-21 3.5 LOW 5.4 MEDIUM
Stored XSS due to Unrestricted File Upload in GitHub repository star7th/showdoc prior to 2.10.4.
CVE-2022-0941 1 Showdoc 1 Showdoc 2024-11-21 3.5 LOW 5.4 MEDIUM
Stored XSS due to Unrestricted File Upload in GitHub repository star7th/showdoc prior to v2.10.4.