Browse all 7 CVE security advisories affecting lirantal. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Lirantal develops open-source security tools focused on dependency scanning and code analysis, primarily serving developers and DevOps teams to identify vulnerabilities in software supply chains. Historically, its projects have been susceptible to cross-site scripting (XSS), remote code execution (RCE), and privilege escalation flaws, often stemming from improper input validation and insecure default configurations. While no major public security incidents have been documented, the 7 CVEs associated with its tools highlight recurring issues in sanitization and access control, emphasizing the need for rigorous input handling and secure-by-default design in security-focused software.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2023-0337 | Cross-site Scripting (XSS) - Reflected in lirantal/daloradius — lirantal/daloradiusCWE-79 | 6.1 | - | 2023-01-17 |
| CVE-2023-0338 | Cross-site Scripting (XSS) - Reflected in lirantal/daloradius — lirantal/daloradiusCWE-79 | 6.1 | - | 2023-01-17 |
| CVE-2023-0046 | Improper Restriction of Names for Files and Other Resources in lirantal/daloradius — lirantal/daloradiusCWE-641 | 7.2 | - | 2023-01-04 |
| CVE-2023-0048 | Code Injection in lirantal/daloradius — lirantal/daloradiusCWE-94 | 8.8 | - | 2023-01-04 |
| CVE-2022-4630 | Sensitive Cookie Without 'HttpOnly' Flag in lirantal/daloradius — lirantal/daloradiusCWE-1004 | 5.3 | - | 2022-12-21 |
| CVE-2022-4366 | Missing Authorization in lirantal/daloradius — lirantal/daloradiusCWE-862 | 7.5 | - | 2022-12-08 |
| CVE-2022-23475 | dalorRadius full account take over — daloradiusCWE-79 | 8.8 | High | 2022-12-06 |
This page lists every published CVE security advisory associated with lirantal. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.