Known Vulnerabilities for products from Requarks
Listed below are 12 of the newest known vulnerabilities associated with the vendor "Requarks".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2022-23654 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 6.5 - MEDIUM | 2022-02-22 | 2023-07-24 |
| CVE-2022-1681 json | Authentication Bypass Using an Alternate Path or Channel in GitHub repository requarks/wiki prior to 2.5.281. User can get ro... | 7.2 - HIGH | 2022-05-12 | 2022-05-20 |
| CVE-2021-43856 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 5.4 - MEDIUM | 2021-12-27 | 2022-01-07 |
| CVE-2021-43855 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 5.4 - MEDIUM | 2021-12-27 | 2022-01-07 |
| CVE-2021-43842 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 5.4 - MEDIUM | 2021-12-20 | 2022-01-03 |
| CVE-2021-43800 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 7.5 - HIGH | 2021-12-06 | 2021-12-08 |
| CVE-2021-25993 json | In Requarks wiki.js, versions 2.0.0-beta.147 to 2.5.255 are affected by Stored XSS vulnerability, where a low privileged (edi... | 5.4 - MEDIUM | 2021-12-29 | 2022-01-06 |
| CVE-2021-21383 json | Wiki.js an open-source wiki app built on Node.js. Wiki.js before version 2.5.191 is vulnerable to stored cross-site scripting... | 5.4 - MEDIUM | 2021-03-18 | 2021-03-24 |
| CVE-2020-15274 json | In Wiki.js before version 2.5.162, an XSS payload can be injected in a page title and executed via the search results. While ... | 5.4 - MEDIUM | 2020-10-26 | 2020-10-30 |
| CVE-2020-15236 json | In Wiki.js before version 2.5.151, directory traversal outside of Wiki.js context is possible when a storage module with loca... | 7.5 - HIGH | 2020-10-05 | 2020-10-09 |
| CVE-2020-11051 json | In Wiki.js before 2.3.81, there is a stored XSS in the Markdown editor. An editor with write access to a page, using the Mark... | 4.8 - MEDIUM | 2020-05-05 | 2020-05-08 |
| CVE-2020-4052 json | In Wiki.js before 2.4.107, there is a stored cross-site scripting through template injection. This vulnerability exists due t... | 6.1 - MEDIUM | 2020-06-16 | 2020-06-22 |
Known software with vulnerabilities from Requarks
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Requarks | Wiki.js | - |