All 5 CVE vulnerabilities found in alfio-event/alf.io, with AI-generated Chinese analysis, references, and POCs.
Vendor: alfio-event
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2023-2260 | Authorization Bypass Through User-Controlled Key in alfio-event/alf.io CWE-639 | 6.5 | - | 2023-04-24 |
| CVE-2023-2259 | Improper Neutralization of Special Elements Used in a Template Engine in alfio-event/alf.io CWE-1336 | 7.6 | - | 2023-04-24 |
| CVE-2023-2258 | Improper Neutralization of Formula Elements in a CSV File in alfio-event/alf.io CWE-1236 | 7.3 | - | 2023-04-24 |
| CVE-2023-0300 | Cross-site Scripting (XSS) - Reflected in alfio-event/alf.io CWE-79 | 6.1 | - | 2023-01-14 |
| CVE-2023-0301 | Cross-site Scripting (XSS) - Stored in alfio-event/alf.io CWE-79 | 5.4 | - | 2023-01-14 |
All 5 known CVE vulnerabilities affecting alfio-event/alf.io with full Chinese analysis, references, and POCs where available.