Browse all 4 CVE security advisories affecting Opencaching Deutschland. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Opencaching Deutschland operates a geocaching platform allowing users to hide and find caches using GPS coordinates. Historically, the application has been susceptible to multiple remote code execution vulnerabilities, cross-site scripting flaws, and privilege escalation issues, as evidenced by its four recorded CVEs. The platform's web interface and database interactions have been primary attack vectors, with insufficient input validation and access controls contributing to past security weaknesses. While no major public incidents have been documented, the consistent pattern of vulnerabilities suggests ongoing challenges in secure coding practices, particularly in handling user-generated content and managing authentication mechanisms.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2022-4585 | Opencaching Deutschland oc-server3 Cookie start.tpl cross site scripting — oc-server3CWE-707 | 3.5 | Low | 2022-12-17 |
| CVE-2022-4586 | Opencaching Deutschland oc-server3 Cachelist cachelists.tpl cross site scripting — oc-server3CWE-707 | 3.5 | Low | 2022-12-17 |
| CVE-2022-4587 | Opencaching Deutschland oc-server3 Login Page login.tpl cross site scripting — oc-server3CWE-707 | 4.3 | Medium | 2022-12-17 |
| CVE-2022-4514 | Opencaching Deutschland oc-server3 varset.inc.php cross site scripting — oc-server3CWE-707 | 3.5 | Low | 2022-12-15 |
This page lists every published CVE security advisory associated with Opencaching Deutschland. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.