📦 Qloapps

Name: Qloapps
Author: Webkul

by Webkul

🔍 What is Qloapps?

Description coming soon...

🛡️ Security Overview

Click on a severity to filter vulnerabilities

⚠️ Known Vulnerabilities

CVE-2024-40318

HIGH CVSS 7.2 Jul 25, 2024

This vulnerability allows attackers to upload malicious files to Webkul Qloapps v1.6.0.0, potentially leading to remote code execution. Any organization running this specific version of Qloapps is aff...

CVE-2023-36284

HIGH CVSS 7.5 Jun 23, 2023

CVE-2023-36284 is an unauthenticated time-based SQL injection vulnerability in Webkul QloApps 1.6.0 that allows remote attackers to bypass authentication and extract entire database contents via GET p...

CVE-2025-10759

MEDIUM CVSS 5.3 Sep 21, 2025

This CVE describes a CSRF token reuse vulnerability in Webkul QloApps up to version 1.7.0 that allows attackers to bypass authorization by manipulating logout functionality tokens. The vulnerability a...

CVE-2025-26058

MEDIUM CVSS 4.2 Feb 18, 2025

Webkul QloApps v1.6.1 exposes authentication tokens in URLs during redirection, allowing attackers to capture these tokens via browser history, logs, or network sniffing. This affects all users access...