Douchat: >> Douchat Security Vulnerabilities
Douchat 4.0.5 suffers from an arbitrary file upload vulnerability via Public/Plugins/webuploader/server/preview.php.
CVSS Score
9.8
EPSS Score
0.004
Published
2024-05-28
An XXE issue was discovered in Douchat 4.0.4 because Data\notify.php calls simplexml_load_string. This can also be used for SSRF.
CVSS Score
7.5
EPSS Score
0.004
Published
2018-10-29