FreeTAKTeam/UI

FreeTAKTeam/UI

Releases10

Frequency4 months 2 weeks

Last Release almost 2 years ago

Stars41

FreeTAKServer Web User Interface project

Log in to subscribe

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2022-25506 ↗	Mar 11, 2022Friday, 11 March 2022, 00:15	6.5 MEDIUM	4 MEDIUM
FreeTAKServer-UI v1.9.8 was discovered to contain a SQL injection vulnerability via the API endpoint /AuthenticateUser.
CVE-2022-25507 ↗	Mar 11, 2022Friday, 11 March 2022, 00:15	5.4 MEDIUM	3.5 LOW
FreeTAKServer-UI v1.9.8 was discovered to contain a stored cross-site scripting (XSS) vulnerability via the Callsign parameter.
CVE-2022-25511 ↗	Mar 11, 2022Friday, 11 March 2022, 00:15	6.5 MEDIUM	4 MEDIUM
An issue in the ?filename= argument of the route /DataPackageTable in FreeTAKServer-UI v1.9.8 allows attackers to place arbitrary files anywhere on the system.
CVE-2022-25512 ↗	Mar 11, 2022Friday, 11 March 2022, 00:15	7.5 HIGH	5 MEDIUM
FreeTAKServer-UI v1.9.8 was discovered to leak sensitive API and Websocket keys.