| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-5469 | Casdoor Webhook URL server-side request forgery | - | Casdoor | Medium | 4.7 | 2026-04-03 14:30:15 | Deep Dive |
| CVE-2026-5468 | Casdoor dangerouslySetInnerHTML cross site scripting | - | Casdoor | Low | 3.5 | 2026-04-03 13:30:15 | Deep Dive |
| CVE-2026-5467 | Casdoor OAuth Authorization Request redirect | - | Casdoor | Medium | 4.3 | 2026-04-03 11:45:10 | Deep Dive |
| CVE-2025-4210 | Casdoor SCIM User Creation Endpoint scim.go HandleScim authorization | - | Casdoor | High | 7.3 | 2025-05-02 15:31:04 | Deep Dive |
| CVE-2024-41658 | GHSL-2024-036: Reflected XSS in QrCodePage.js | casdoor | casdoor | Medium | 6.1 | 2024-08-20 20:11:34 | Deep Dive |
| CVE-2024-41657 | GHSL-2024-035: Casdoor CORS misconfiguration | casdoor | casdoor | High | 8.1 | 2024-08-20 20:11:30 | Deep Dive |
| CVE-2024-5587 | Casdoor Configuration File app.conf file access | - | Casdoor | Medium | 5.3 | 2024-06-02 10:00:08 | Deep Dive |