CVE-2026-24735

< 2.0.0

Exposure of Private Personal Information to an Unauthorized Actor vulnerability in Apache Answer. This issue affects Apache Answe

7.5HIGH

CVE-2025-29868

<= 1.4.2

Private Data Structure Returned From A Public Method vulnerability in Apache Answer. This issue affects Apache Answer: through 1.

6.5MEDIUM

CVE-2024-45719

< 1.4.1

Inadequate Encryption Strength vulnerability in Apache Answer. This issue affects Apache Answer: through 1.4.0. The ids generate

2.6LOW

CVE-2024-40761

<= 1.3.5

Inadequate Encryption Strength vulnerability in Apache Answer. This issue affects Apache Answer: through 1.3.5. Using the MD5 va

5.3MEDIUM

CVE-2024-41890

< 1.3.6

Missing Release of Resource after Effective Lifetime vulnerability in Apache Answer. This issue affects Apache Answer: through 1.

5.3MEDIUM

CVE-2024-41888

< 1.3.6

Missing Release of Resource after Effective Lifetime vulnerability in Apache Answer. This issue affects Apache Answer: through 1.

5.3MEDIUM

CVE-2024-29217

< 1.3.0

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Apache Answer.This issue aff

4.6MEDIUM

CVE-2024-26578

<= 1.2.1

Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') vulnerability in Apache Answer.This is

5.9MEDIUM

CVE-2024-23349

<= 1.2.1

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Apache Answer.This issue aff

5.4MEDIUM

CVE-2024-22393

< 1.2.5

Unrestricted Upload of File with Dangerous Type vulnerability in Apache Answer.This issue affects Apache Answer: through 1.2.1. P

9.1CRITICAL

CVE-2023-49619

< 1.2.1

Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') vulnerability in Apache Answer. This

3.1LOW

CVE-2023-4815

< 1.1.3

Missing Authentication for Critical Function in GitHub repository answerdev/answer prior to v1.1.3.

8.8HIGH

CVE-2023-4127

< 1.1.1

Race Condition within a Thread in GitHub repository answerdev/answer prior to v1.1.1.

5.9MEDIUM

CVE-2023-4126

< 1.1.0

Insufficient Session Expiration in GitHub repository answerdev/answer prior to v1.1.0.

8.8HIGH

CVE-2023-4125

< 1.1.0

Weak Password Requirements in GitHub repository answerdev/answer prior to v1.1.0.

8.8HIGH

CVE-2023-4124

< 1.1.1

Missing Authorization in GitHub repository answerdev/answer prior to v1.1.1.

6.5MEDIUM

CVE-2023-2590

< 1.0.9

Missing Authorization in GitHub repository answerdev/answer prior to 1.0.9.

3.5LOW

CVE-2023-1976

< 1.0.6

Password Aging with Long Expiration in GitHub repository answerdev/answer prior to 1.0.6.

8.8HIGH

CVE-2023-1975

< 1.0.8

Insertion of Sensitive Information Into Sent Data in GitHub repository answerdev/answer prior to 1.0.8.

6.5MEDIUM

CVE-2023-1974

< 1.0.8

Exposure of Sensitive Information Through Metadata in GitHub repository answerdev/answer prior to 1.0.8.

6.5MEDIUM

CVE-2023-1543

< 1.0.6

Insufficient Session Expiration in GitHub repository answerdev/answer prior to 1.0.6.

8.8HIGH

CVE-2023-1542

< 1.0.6

Business Logic Errors in GitHub repository answerdev/answer prior to 1.0.6.

5.4MEDIUM

CVE-2023-1541

< 1.0.6

Business Logic Errors in GitHub repository answerdev/answer prior to 1.0.6.

3.8LOW

CVE-2023-1540

< 1.0.6

Observable Response Discrepancy in GitHub repository answerdev/answer prior to 1.0.6.

5.3MEDIUM

CVE-2023-1539

< 1.0.6

Improper Restriction of Excessive Authentication Attempts in GitHub repository answerdev/answer prior to 1.0.6.

5.3MEDIUM

CVE-2023-1538

< 1.0.6

Observable Timing Discrepancy in GitHub repository answerdev/answer prior to 1.0.6.

5.3MEDIUM

CVE-2023-1537

< 1.0.6

Authentication Bypass by Capture-replay in GitHub repository answerdev/answer prior to 1.0.6.

9.8CRITICAL

CVE-2023-1536

< 1.0.7

Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.7.

5.4MEDIUM

CVE-2023-1535

< 1.0.7

Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.7.

5.4MEDIUM

CVE-2023-1245

< 1.0.6

Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.6.

5.4MEDIUM

CVE-2023-1244

< 1.0.6

Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.6.

5.4MEDIUM

CVE-2023-1243

< 1.0.6

Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.6.

4.8MEDIUM

CVE-2023-1242

< 1.0.6

Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.6.

5.4MEDIUM

CVE-2023-1241

< 1.0.6

Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.6.

5.4MEDIUM

CVE-2023-1240

< 1.0.6

Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.6.

5.4MEDIUM

CVE-2023-1239

< 1.0.6

Cross-site Scripting (XSS) - Reflected in GitHub repository answerdev/answer prior to 1.0.6.

4.8MEDIUM

CVE-2023-1238

< 1.0.6

Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.6.

5.4MEDIUM

CVE-2023-1237

< 1.0.6

Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.6.

5.4MEDIUM

CVE-2023-0934

< 1.0.5

Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.5.

5.4MEDIUM

CVE-2023-0744

< 1.0.4

Improper Access Control in GitHub repository answerdev/answer prior to 1.0.4.

9.8CRITICAL

CVE-2023-0743

< 1.0.4

Cross-site Scripting (XSS) - Generic in GitHub repository answerdev/answer prior to 1.0.4.

9.0CRITICAL

CVE-2023-0742

< 1.0.4

Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.4.

9.0CRITICAL

CVE-2023-0741

< 1.0.4

Cross-site Scripting (XSS) - DOM in GitHub repository answerdev/answer prior to 1.0.4.

9.0CRITICAL

CVE-2023-0740

< 1.0.4

Cross-site Scripting (XSS) - Stored in GitHub repository answerdev/answer prior to 1.0.4.

9.0CRITICAL

CVE-2023-0739

< 1.0.4

Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') in GitHub repository answerdev/answer

6.8MEDIUM