Sakura Vulnerabilities
Comprehensive security vulnerability database for Sakura products
2
0
0
0
Severity Distribution
| Description | Vendor / Product | Exploit Status | |||
|---|---|---|---|---|---|
| CVE-2023-32625 | 4.3 | This vulnerability allows an attacker to take control of a user's account and change their settings by tricking them into visiting a malicious webpage. The attacker does not need to be logged in, but the user must be authenticated and visit the harmful page while logged into the affected application. | sakurats webfonts for sakura | Theoretical | over 2 years agoJul 21, 2023 |
| CVE-2023-32624 | 6.1 | This vulnerability allows an attacker to inject malicious scripts into web pages viewed by users, which can lead to data theft or session hijacking. It affects versions 3.1.0 and earlier of TS Webfonts for SAKURA, and the attacker does not need to be logged in to exploit it. | sakurats webfonts for sakura | Theoretical | over 2 years agoJul 21, 2023 |
About Sakura Security
This page tracks all publicly disclosed security vulnerabilities (CVEs) affecting Sakura products. Our database is updated in real-time from the National Vulnerability Database (NVD) and enriched with exploit information from GitHub and other security research sources.
Each CVE listing includes CVSS severity scores, exploit availability status, AI-powered vulnerability summaries, and links to official patches and security advisories.