本ページは kozos easyctf に影響する公開済み CVE(NVD の CPE 経由で関連付け)を列挙します。各行に深刻度指標・概要・公開日が含まれます。
| CVE | 概要 | ソース | CVSS 最大値 | EPSS(%) | 公開 | 更新 |
|---|---|---|---|---|---|---|
| CVE-2015-0914 | EasyCTF before 1.4 does not validate the session ID, which allows remote attackers to obtain access via a crafted HTTP request. | [email protected] | 5.0 | 1.70% | 2015-05-01 | 2026-05-06 |
| CVE-2015-0913 | Cross-site scripting (XSS) vulnerability in EasyCTF before 1.4 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors. | [email protected] | 3.5 | 0.95% | 2015-05-01 | 2026-05-06 |
| CVE-2015-0912 | EasyCTF before 1.4 allows remote authenticated users to write executable content to files via unspecified vectors. | [email protected] | 6.5 | 1.26% | 2015-05-01 | 2026-05-06 |