Aggregates CVE and security vulnerability intelligence across all daifukuya-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.
Common weakness patterns include vendor risk cross-site scripting and vendor risk csrf, with potential vendor impact session compromise across vendor surface software deployment and vendor surface production workloads use cases.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2021-20687 | Cross-site request forgery (CSRF) vulnerability in Kagemai 0.8.8 allows remote attackers to hijack the authentication of administrators via unspecified vectors. | [email protected] | 8.8 | 0.08% | 2021-04-07 | 2024-11-21 |
| CVE-2021-20686 | Cross-site scripting vulnerability in Kagemai 0.8.8 allows remote attackers to inject an arbitrary script via unspecified vectors. | [email protected] | 6.1 | 0.23% | 2021-04-07 | 2024-11-21 |
| CVE-2021-20685 | Cross-site scripting vulnerability in Kagemai 0.8.8 allows remote attackers to inject an arbitrary script via unspecified vectors. | [email protected] | 6.1 | 0.21% | 2021-04-07 | 2024-11-21 |