Wecube-platform Project Wecube-platform — known CVE vulnerabilities
Every CVE whose affected-product data names Wecube-platform Project Wecube-platform, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2022-37785 — CVSS 7.5 (high): An issue was discovered in WeCube Platform 3.2.2. Cleartext passwords are displayed in the configuration for terminal plugins.
CVE-2022-37786 — CVSS 6.3 (medium): An issue was discovered in WeCube Platform 3.2.2. There are multiple CSV injection issues: the [Home / Admin / Resources] page, the [Home /…
CVE-2022-37787 — CVSS 6.1 (medium): An issue was discovered in WeCube platform 3.2.2. A DOM XSS vulnerability has been found on the plugin database execution page.