Shodan
Vulnerabilities
Vulnerable Software
Diagrams:  >> Drawio  >> 18.0.3  Security Vulnerabilities
CVE-2022-1711
Server-Side Request Forgery (SSRF) in GitHub repository jgraph/drawio prior to 18.0.5.
CVSS Score
7.5
EPSS Score
0.262
Published
2022-05-17
CVE-2022-1723
Server-Side Request Forgery (SSRF) in GitHub repository jgraph/drawio prior to 18.0.6.
CVSS Score
7.5
EPSS Score
0.009
Published
2022-05-17
CVE-2022-1713
SSRF on /proxy in GitHub repository jgraph/drawio prior to 18.0.4. An attacker can make a request as the server and read its contents. This can lead to a leak of sensitive information.
CVSS Score
7.5
EPSS Score
0.888
Published
2022-05-16
CVE-2022-1721
Path Traversal in WellKnownServlet in GitHub repository jgraph/drawio prior to 18.0.5. Read local files of the web application.
CVSS Score
7.5
EPSS Score
0.012
Published
2022-05-16
CVE-2022-1722
SSRF in editor's proxy via IPv6 link-local address in GitHub repository jgraph/drawio prior to 18.0.5. SSRF to internal link-local IPv6 addresses
CVSS Score
7.5
EPSS Score
0.002
Published
2022-05-16


Products
Pricing
Contact Us

Shodan ® - All rights reserved