| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-33640 | Outline has a rate limit bypass that allows brute force of email login OTP | outline | outline | 中危 | - | 2026-03-26 20:56:38 | Deep Dive |
| CVE-2026-28506 | Outline's Information Disclosure in Activity Logs allows User Enumeration of Private Drafts | outline | outline | Medium | 4.3 | 2026-03-17 15:30:24 | Deep Dive |
| CVE-2026-24901 | Outline's IDOR allows unauthorized viewing and seizing of private deleted drafts | outline | outline | High | 8.1 | 2026-03-17 15:28:28 | Deep Dive |
| CVE-2025-68663 | Outline has a suspended user authentication bypass via WebSocket connections | outline | outline | - | - | 2026-02-11 20:29:41 | Deep Dive |
| CVE-2025-64487 | Outline is vulnerable to privilege escalation vulnerability in document sharing | outline | outline | High | 7.6 | 2026-02-11 20:25:42 | Deep Dive |
| CVE-2026-25062 | Outline Affected an Arbitrary File Read via Path Traversal in JSON Import | outline | outline | Medium | 5.5 | 2026-02-11 20:23:07 | Deep Dive |
| CVE-2020-37030 | Outline Service 1.3.3 - 'Outline Service ' Unquoted Service Path | Getoutline | Outline Service | High | 7.8 | 2026-01-30 16:16:40 | Deep Dive |
| CVE-2023-54331 | Outline 1.6.0 - Unquoted Service Path | Getoutline | Outline | High | 7.8 | 2026-01-13 22:52:06 | Deep Dive |
| CVE-2025-58351 | Outline's Local File Storage Feature can Cause CSP Bypass | outline | outline | Medium | 6.8 | 2025-09-03 03:20:55 | Deep Dive |
| CVE-2024-40626 | Stored Cross-site Scripting (XSS) vulnerability in Outline editor | outline | outline | High | 7.3 | 2024-07-16 17:03:40 | Deep Dive |
| CVE-2023-3532 | Cross-site Scripting (XSS) - Stored in outline/outline | outline | outline/outline | 中危 | - | 2023-07-07 02:22:00 | Deep Dive |
| CVE-2022-2342 | Cross-site Scripting (XSS) - Stored in outline/outline | outline | outline/outline | 中危 | - | 2022-07-07 10:10:10 | Deep Dive |