adive framework CVE Vulnerabilities (5)

CVEs: 5 CPE versions: View versions table

Summary

This page lists publicly disclosed CVE vulnerabilities affecting adive framework (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.

Showing 15 of 5 CVEs
«« First « Prev Page 1 / 1 Next »
CVE Summary Source Max CVSS EPSS % Published Updated
CVE-2024-4337 Adive Framework 2.0.8, does not sufficiently encode user-controlled inputs, resulting in a persistent Cross-Site Scripting (XSS) vulnerability via the /adive/admin/nav/add, in multiple parameters. This vulnerability allows an attacker to retrieve the session details of an authenticated user. [email protected] 7.6 0.17% 2024-04-30 2025-10-15
CVE-2024-4336 Adive Framework 2.0.8, does not sufficiently encode user-controlled inputs, resulting in a persistent Cross-Site Scripting (XSS) vulnerability via the /adive/admin/tables/add, in multiple parameters. An attacker could retrieve the session details of an authenticated user. [email protected] 7.6 0.17% 2024-04-30 2025-10-15
CVE-2020-7991 Adive Framework 2.0.8 has admin/config CSRF to change the Administrator password. [email protected] 8.8 0.31% 2020-01-26 2024-11-21
CVE-2020-7990 Adive Framework 2.0.8 has admin/user/add userName XSS. [email protected] 6.1 0.33% 2020-01-26 2024-11-21
CVE-2020-7989 Adive Framework 2.0.8 has admin/user/add userUsername XSS. [email protected] 6.1 0.33% 2020-01-26 2024-11-21
«« First « Prev Page 1 / 1 Next »
cvelogic Threat Intelligence