Every CVE whose affected-product data names Kodcloud Kodbox, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (14)
CVE-2023-48028 — CVSS 9.8 (critical): kodbox 1.46.01 has a security flaw that enables user enumeration. This problem is present on the login page, where an attacker can identify…
CVE-2023-39691 — CVSS 9.8 (critical): An issue discovered in kodbox through 1.43 allows attackers to arbitrarily add Administrator accounts via crafted GET request.
CVE-2023-6849 — CVSS 7.3 (high): A vulnerability was found in kalcaddle kodbox up to 1.48. It has been rated as critical. Affected by this issue is the function cover of…
CVE-2023-6848 — CVSS 7.3 (high): A vulnerability was found in kalcaddle kodbox up to 1.48. It has been declared as critical. Affected by this vulnerability is the function…
CVE-2026-1066 — CVSS 6.3 (medium): A vulnerability was detected in kalcaddle kodbox up to 1.61.10. This issue affects some unknown processing of the file /?explorer/index/zip…
CVE-2025-10233 — CVSS 6.3 (medium): A security vulnerability has been detected in kalcaddle kodbox 1.61. This affects the function fileGet/fileSave of the file…
CVE-2023-52068 — CVSS 6.1 (medium): kodbox v1.43 was discovered to contain a cross-site scripting (XSS) vulnerability via the operation and login logs.
CVE-2023-3607 — CVSS 5.5 (medium): A vulnerability was found in kodbox 1.26. It has been declared as critical. This vulnerability affects the function Execute of the file…
CVE-2023-45998 — CVSS 5.4 (medium): kodbox 1.44 is vulnerable to Cross Site Scripting (XSS). Customizing global HTML results in storing XSS.
CVE-2023-52069 — CVSS 5.4 (medium): kodbox v1.49.04 was discovered to contain a cross-site scripting (XSS) vulnerability via the URL parameter.
CVE-2024-51037 — CVSS 5.3 (medium): An issue in kodbox v.1.52.04 and before allows a remote attacker to obtain sensitive information via the captcha feature in the password…
CVE-2025-9414 — CVSS 4.7 (medium): A vulnerability was found in kalcaddle kodbox 1.61. Affected by this vulnerability is an unknown functionality of the file…