CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Documize: >> Documize Security Vulnerabilities

CVE-2023-23634

SQL Injection vulnerability in Documize version 5.4.2, allows remote attackers to execute arbitrary code via the user parameter of the /api/dashboard/activity endpoint.

CVSS Score

9.8

EPSS Score

0.022

Published

2023-12-29

CVE-2019-19619

domain/section/markdown/markdown.go in Documize before 3.5.1 mishandles untrusted Markdown content. This was addressed by adding the bluemonday HTML sanitizer to defend against XSS.

CVSS Score

6.1

EPSS Score

0.004

Published

2019-12-06

Page 1

Vulnerabilities

Vulnerable Software

Documize: >> Documize Security Vulnerabilities

Products

Pricing

Contact Us