tznb1/TwoNav

Releases58

Frequency2 weeks 1 day

Last Release 9 months ago

Stars452

TwoNav 第二代云导航|云书签管理系统

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2024-34453 ↗	May 3, 2024Friday, 3 May 2024, 18:15	4.3 MEDIUM	—
TwoNav 2.1.13 contains an SSRF vulnerability via the url paramater to index.php?c=api&method=read_data&type=connectivity_test (which reaches /system/api.php).
CVE-2023-37657 ↗	Jul 11, 2023Tuesday, 11 July 2023, 15:15	5.4 MEDIUM	—
TwoNav v2.0.28-20230624 is vulnerable to Cross Site Scripting (XSS).