All 8 CVE vulnerabilities found in Knowage-Server, with AI-generated Chinese analysis, references, and POCs.
Vendor: KnowageLabs
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-58441 | Knowage is vulnerable to blind server-side request forgery (SSRF) CWE-918 | 5.3 | - | 2026-01-07 |
| CVE-2025-59954 | Knowage Contains a Remote Code Execution Vulnerability CWE-94 | 9.8 | - | 2025-09-29 |
| CVE-2025-55007 | Knowage vulnerable to server-side request forgery CWE-918 | 3.5 | Low | 2025-09-01 |
| CVE-2023-38702 | Knowage Server vulnerable to path traversal via upload functionality CWE-22 | 10.0 | Critical | 2023-08-04 |
| CVE-2023-37472 | Query injection in Knowage server CWE-89 | 7.7 | High | 2023-07-14 |
| CVE-2023-36819 | Knowage-Server vulnerable to Path traversal in download functionalities CWE-22 | 6.5 | Medium | 2023-07-03 |
| CVE-2023-35154 | Knowage-Server vulnerable to account validation bypass CWE-287 | 7.2 | High | 2023-06-23 |
| CVE-2022-39295 | Improper Neutralization of Alternate XSS Syntax in Knowage-Server CWE-87 | 6.1 | Medium | 2022-10-13 |
All 8 known CVE vulnerabilities affecting Knowage-Server with full Chinese analysis, references, and POCs where available.