All 5 CVE vulnerabilities found in galaxy, with AI-generated Chinese analysis, references, and POCs.
Vendor: galaxyproject
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-42351 | Possible Data Tampering & Loss of Public Datasets in Galaxy CWE-200 | 6.5 | Medium | 2024-09-20 |
| CVE-2024-42346 | Stored Cross Site Scripting (Stored XSS) in Galaxy CWE-79 | 7.6 | High | 2024-09-20 |
| CVE-2023-42812 | Galaxy vulnerable to Server Side Request Forgery during data imports CWE-918 | 6.3 | Medium | 2023-09-22 |
| CVE-2023-27578 | Galaxy vulnerable to unauthorized modification of pages/visualizations due to insufficient permission check CWE-284 | 9.1 | Critical | 2023-03-20 |
| CVE-2022-23470 | Arbitrary file access in the Galaxy data analysis platform CWE-22 | 8.6 | High | 2022-12-06 |
All 5 known CVE vulnerabilities affecting galaxy with full Chinese analysis, references, and POCs where available.