Name: Etherpad
Author: Etherpad

🔍 What is Etherpad?

Description coming soon...

🛡️ Security Overview

Click on a severity to filter vulnerabilities

⚠️ Known Vulnerabilities

CVE-2021-43802

CRITICAL CVSS 9.9 Dec 9, 2021

CVE-2021-43802 is a critical vulnerability in Etherpad that allows attackers to gain admin privileges by importing a malicious *.etherpad file. This can lead to arbitrary code execution through malici...

CVE-2021-34816

HIGH CVSS 7.2 Jul 21, 2021

CVE-2021-34816 is an argument injection vulnerability in Etherpad's plugin management system that allows privileged users to execute arbitrary code on the server by installing plugins from attacker-co...

CVE-2020-22782

HIGH CVSS 7.5 Apr 28, 2021

Etherpad versions before 1.8.3 contain a denial of service vulnerability in the import functionality. Attackers can crash Etherpad instances by uploading binary files to the import endpoint. This affe...