| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2021-47716 | Orangescrum 1.8.0 Cross-Site Scripting via Authenticated Endpoints | Orangescrum | orangescrum | Medium | 5.4 | 2025-12-23 19:35:41 | Deep Dive |
| CVE-2021-47721 | Orangescrum 1.8.0 Authenticated Privilege Escalation via User Session Manipulation | Orangescrum | orangescrum | High | 8.8 | 2025-12-23 19:34:07 | Deep Dive |
| CVE-2021-47720 | Orangescrum 1.8.0 Authenticated SQL Injection via Multiple Parameters | Orangescrum | orangescrum | High | 7.1 | 2025-12-23 19:34:06 | Deep Dive |
| CVE-2023-1783 | OrangeScrum 2.0.11 - AWS Credentials Leak via PDF Rendering | Orangescrum | Orangescrum | Medium | 6.5 | 2023-06-23 21:55:49 | Deep Dive |
| CVE-2023-0738 | OrangeScrum 跨站脚本漏洞 | - | OrangeScrum | 中危 | - | 2023-04-04 00:00:00 | Deep Dive |
| CVE-2023-0624 | OrangeScrum 跨站脚本漏洞 | - | OrangeScrum | 中危 | - | 2023-02-09 00:00:00 | Deep Dive |
| CVE-2023-0454 | OrangeScrum 路径遍历漏洞 | - | OrangeScrum | 高危 | - | 2023-02-01 00:00:00 | Deep Dive |
| CVE-2023-0164 | OrangeScrum 操作系统命令注入漏洞 | - | OrangeScrum | 高危 | - | 2023-01-18 00:00:00 | Deep Dive |