apache/answer

GitHub

github.com

answer.apache.org

Releases65

Frequency2 weeks 6 days

Last Release 10 days ago

Stars15.5K

A Q&A platform software for teams at any scales. Whether it's a community forum, help center, or knowledge management platform, you can always count on Apache Answer.

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2023-4815 ↗	Sep 7, 2023Thursday, 7 September 2023, 07:15	8.8 HIGH	—
Missing Authentication for Critical Function in GitHub repository answerdev/answer prior to v1.1.3.
CVE-2023-4127 ↗	Aug 3, 2023Thursday, 3 August 2023, 04:15	5.9 MEDIUM	—
Race Condition within a Thread in GitHub repository answerdev/answer prior to v1.1.1.
CVE-2023-4126 ↗	Aug 3, 2023Thursday, 3 August 2023, 04:15	8.8 HIGH	—
Insufficient Session Expiration in GitHub repository answerdev/answer prior to v1.1.0.
CVE-2023-4125 ↗	Aug 3, 2023Thursday, 3 August 2023, 04:15	8.8 HIGH	—
Weak Password Requirements in GitHub repository answerdev/answer prior to v1.1.0.
CVE-2023-4124 ↗	Aug 3, 2023Thursday, 3 August 2023, 04:15	6.5 MEDIUM	—
Missing Authorization in GitHub repository answerdev/answer prior to v1.1.1.
CVE-2023-2590 ↗	May 9, 2023Tuesday, 9 May 2023, 06:15	3.5 LOW	—
Missing Authorization in GitHub repository answerdev/answer prior to 1.0.9.
CVE-2023-1976 ↗	Apr 11, 2023Tuesday, 11 April 2023, 11:15	8.8 HIGH	—
Password Aging with Long Expiration in GitHub repository answerdev/answer prior to 1.0.6.
CVE-2023-1975 ↗	Apr 11, 2023Tuesday, 11 April 2023, 10:15	6.5 MEDIUM	—
Insertion of Sensitive Information Into Sent Data in GitHub repository answerdev/answer prior to 1.0.8.
CVE-2023-1974 ↗	Apr 11, 2023Tuesday, 11 April 2023, 10:15	6.5 MEDIUM	—
Exposure of Sensitive Information Through Metadata in GitHub repository answerdev/answer prior to 1.0.8.
CVE-2023-1543 ↗	Mar 21, 2023Tuesday, 21 March 2023, 05:15	8.8 HIGH	—
Insufficient Session Expiration in GitHub repository answerdev/answer prior to 1.0.6.
CVE-2023-1542 ↗	Mar 21, 2023Tuesday, 21 March 2023, 05:15	5.4 MEDIUM	—
Business Logic Errors in GitHub repository answerdev/answer prior to 1.0.6.
CVE-2023-1541 ↗	Mar 21, 2023Tuesday, 21 March 2023, 05:15	3.8 LOW	—
Business Logic Errors in GitHub repository answerdev/answer prior to 1.0.6.
CVE-2023-1536 ↗	Mar 21, 2023Tuesday, 21 March 2023, 05:15	5.4 MEDIUM	—
Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.7.
CVE-2023-1540 ↗	Mar 21, 2023Tuesday, 21 March 2023, 05:15	5.3 MEDIUM	—
Observable Response Discrepancy in GitHub repository answerdev/answer prior to 1.0.6.
CVE-2023-1539 ↗	Mar 21, 2023Tuesday, 21 March 2023, 05:15	5.3 MEDIUM	—
Improper Restriction of Excessive Authentication Attempts in GitHub repository answerdev/answer prior to 1.0.6.
CVE-2023-1538 ↗	Mar 21, 2023Tuesday, 21 March 2023, 05:15	5.3 MEDIUM	—
Observable Timing Discrepancy in GitHub repository answerdev/answer prior to 1.0.6.
CVE-2023-1537 ↗	Mar 21, 2023Tuesday, 21 March 2023, 05:15	9.8 CRITICAL	—
Authentication Bypass by Capture-replay in GitHub repository answerdev/answer prior to 1.0.6.
CVE-2023-1535 ↗	Mar 21, 2023Tuesday, 21 March 2023, 05:15	5.4 MEDIUM	—
Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.7.
CVE-2023-1245 ↗	Mar 7, 2023Tuesday, 7 March 2023, 08:15	5.4 MEDIUM	—
Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.6.
CVE-2023-1238 ↗	Mar 7, 2023Tuesday, 7 March 2023, 08:15	5.4 MEDIUM	—
Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.6.
CVE-2023-1243 ↗	Mar 7, 2023Tuesday, 7 March 2023, 08:15	4.8 MEDIUM	—
Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.6.
CVE-2023-1242 ↗	Mar 7, 2023Tuesday, 7 March 2023, 08:15	5.4 MEDIUM	—
Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.6.
CVE-2023-1241 ↗	Mar 7, 2023Tuesday, 7 March 2023, 08:15	5.4 MEDIUM	—
Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.6.
CVE-2023-1240 ↗	Mar 7, 2023Tuesday, 7 March 2023, 08:15	5.4 MEDIUM	—
Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.6.
CVE-2023-1244 ↗	Mar 7, 2023Tuesday, 7 March 2023, 08:15	5.4 MEDIUM	—
Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.6.
CVE-2023-1239 ↗	Mar 7, 2023Tuesday, 7 March 2023, 08:15	4.8 MEDIUM	—
Cross-site Scripting (XSS) - Reflected in GitHub repository answerdev/answer prior to 1.0.6.
CVE-2023-1237 ↗	Mar 7, 2023Tuesday, 7 March 2023, 08:15	5.4 MEDIUM	—
Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.6.
CVE-2023-0934 ↗	Feb 21, 2023Tuesday, 21 February 2023, 15:15	5.4 MEDIUM	—
Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.5.
CVE-2023-0744 ↗	Feb 8, 2023Wednesday, 8 February 2023, 08:15	9.8 CRITICAL	—
Improper Access Control in GitHub repository answerdev/answer prior to 1.0.4.
CVE-2023-0743 ↗	Feb 8, 2023Wednesday, 8 February 2023, 08:15	9 CRITICAL	—
Cross-site Scripting (XSS) - Generic in GitHub repository answerdev/answer prior to 1.0.4.
CVE-2023-0742 ↗	Feb 8, 2023Wednesday, 8 February 2023, 08:15	9 CRITICAL	—
Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.4.
CVE-2023-0741 ↗	Feb 8, 2023Wednesday, 8 February 2023, 08:15	9 CRITICAL	—
Cross-site Scripting (XSS) - DOM in GitHub repository answerdev/answer prior to 1.0.4.
CVE-2023-0740 ↗	Feb 8, 2023Wednesday, 8 February 2023, 08:15	9 CRITICAL	—
Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.4.
CVE-2023-0739 ↗	Feb 8, 2023Wednesday, 8 February 2023, 05:15	6.8 MEDIUM	—
Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') in GitHub repository answerdev/answer prior to 1.0.4.