Vulnerabilities for uptime--kuma

Vulnerabilities for products matching "uptime--kuma"

Found 2 matching products. Filters apply to all results.

You can search for specific versions with /product/uptime--kuma/1.2.3

4 vulnerabilities found

Title	Severity	Date	Affected Version
CVE-2023-36822	Medium	July 5, 2023 7/5/23	< 1.22.1
CVE-2023-36821	High	July 5, 2023 7/5/23	< 1.22.1
CVE-2023-25810	Medium	February 21, 2023 2/21/23	< 1.20.0
CVE-2023-25811	Medium	February 21, 2023 2/21/23	< 1.20.0

10 vulnerabilities found

Title	Severity	Date	Affected Version
Uptime Kuma Server-side Template Injection (SSTI) in Notification Templates Allows Arbitrary File Read	Medium	October 20, 2025 10/20/25	== 2.0.0-dev.0
Uptime Kuma's Regular Expression in pushdeeer and whapi file Leads to ReDoS Vulnerability Due to Catastrophic Backtracking	Medium	March 31, 2025 3/31/25	>= 1.15.0 <= 1.23.16 >= 2.0.0-beta.0 < 2.0.0-beta.2
CVE-2025-26042	Medium	March 31, 2025 3/31/25	>= 1.15.0 <= 1.23.16 >= 2.0.0-beta.0 < 2.0.0-beta.2
Enabling Authentication does not close all logged in socket connections immediately	Low	April 19, 2024 4/19/24	< 1.23.12
CVE-2023-49804	Medium	December 11, 2023 12/11/23	< 1.23.9
CVE-2023-49276	Medium	December 1, 2023 12/1/23	>= 1.20.0 < 1.23.7
Uptime Kuma Authenticated remote code execution via TailscalePing	Medium	November 27, 2023 11/27/23	>= 1.23.0 < 1.23.7
CVE-2023-44400	Medium	October 9, 2023 10/9/23	< 1.23.3
CVE-2023-36821	High	July 5, 2023 7/5/23	< 1.22.1
CVE-2023-36822	Medium	July 5, 2023 7/5/23	< 1.22.1

Showing vulnerabilities for 2 products matching "uptime--kuma". Each product has independent pagination.