VIR Vulnerability Intelligence Relay

Package impact

java MAVEN / org.opencms:opencms-core

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Flags OS Vendor Published Description
CVE-2023-42346 high 7.5 7.5 21d ago Alkacon OpenCms is vulnerable to XXE when the <!DOCTYPE> refers to an external host
CVE-2023-42344 high 7.3 7.3 21d ago Alkacon OpenCms allows remote unauthenticated attackers to obtain sensitive information
CVE-2023-42345 medium 6.1 6.1 21d ago Alkacon OpenCms is vulnerable to XSS via updateModelGroups.jsp
CVE-2023-42343 medium 6.1 6.1 21d ago Alkacon OpenCms is vulnerable to XSS via cmis-online/type