tematres/TemaTres-Vocabulary-Server

Releases15

Frequency5 months 1 day

Last Release 2 months ago

Stars139

Web application for management formal representations of knowledge, like controlled vocabularies, taxonomies, thesauri and glossaries

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2019-14344 ↗	Dec 13, 2019Friday, 13 December 2019, 16:15	6.1 MEDIUM	4.3 MEDIUM
TemaTres 3.0 has reflected XSS via the replace_string or search_string parameter to the vocab/admin.php?doAdmin=bulkReplace URI.
CVE-2019-14345 ↗	Nov 15, 2019Friday, 15 November 2019, 14:15	9.8 CRITICAL	7.5 HIGH
TemaTres 3.0 allows remote unprivileged users to create an administrator account
CVE-2019-14343 ↗	Nov 15, 2019Friday, 15 November 2019, 13:15	5.4 MEDIUM	3.5 LOW
TemaTres 3.0 has stored XSS via the value parameter to the vocab/admin.php?vocabulario_id=list URI.