RayStored XSS in i-doit Pro 25 and below — CVE-2023–46003Versions of i-doit Pro prior to 25 are susceptible to a Stored Cross-Site Scripting (XSS) vulnerability. This vulnerability enables remote…Oct 19, 2023Oct 19, 2023
Rayi-doit Pro v25 and below weak password & add-on upload to RCE, CVE-2023–37756I-Doit’s Pro V25 exhibits a vulnerability related to weak password requirements, allowing the configuration of extremely weak admin…Sep 10, 2023Sep 10, 2023
Rayi-doit v25 and below incorrect access control issue, CVE-2023–37755The Idoit Open and Pro Edition, up to version v25, exhibit some incorrect access control issues. The default installation of the…Sep 10, 2023Sep 10, 2023
Rayi-doit Pro v25 path traversal, CVE-2023–37739I-doit’s pro V25 is vulnerable to path traversal — arbitrary file read. The vulnerability allows attackers to read any file on the file…Sep 10, 2023Sep 10, 2023
RayCVE-2023–34830 Reflected XSS on i-doit Open v24 and belowI-doit Open v24 and below are vulnerable to reflected XSS. The vulnerability allows attackers to send the malicious URL containing the…Jun 22, 2023Jun 22, 2023