Shodan
Vulnerabilities
Vulnerable Software
Lavalite:  >> Lavalite  >> 9.0.0  Security Vulnerabilities
CVE-2023-36983
LavaLite CMS v 9.0.0 is vulnerable to Sensitive Data Exposure.
CVSS Score
7.5
EPSS Score
0.001
Published
2023-08-01
CVE-2023-36984
LavaLite CMS v 9.0.0 is vulnerable to Sensitive Data Exposure.
CVSS Score
7.5
EPSS Score
0.001
Published
2023-08-01
CVE-2023-30124
LavaLite v9.0.0 is vulnerable to Cross Site Scripting (XSS).
CVSS Score
5.4
EPSS Score
0.001
Published
2023-05-18
CVE-2023-27237
LavaLite CMS v 9.0.0 was discovered to be vulnerable to a host header injection attack.
CVSS Score
6.1
EPSS Score
0.001
Published
2023-05-12
CVE-2023-27238
LavaLite CMS v 9.0.0 was discovered to be vulnerable to web cache poisoning.
CVSS Score
9.8
EPSS Score
0.003
Published
2023-05-12
CVE-2022-42188
In Lavalite 9.0.0, the XSRF-TOKEN cookie is vulnerable to path traversal attacks, enabling read access to arbitrary files on the server.
CVSS Score
7.5
EPSS Score
0.001
Published
2022-10-18


Products
Pricing
Contact Us

Shodan ® - All rights reserved