Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8
CVE-2020-13651
- EPSS 0.2%
- Veröffentlicht 15.06.2020 19:15:10
- Zuletzt bearbeitet 21.11.2024 05:01:40
An issue was discovered in DigDash 2018R2 before p20200528, 2019R1 before p20200421, and 2019R2 before p20200430. It allows a user to provide data that will be used to generate the JNLP file used by a client to obtain the right Java application. By p...
6.1
CVE-2020-13652
- EPSS 0.24%
- Veröffentlicht 15.06.2020 19:15:10
- Zuletzt bearbeitet 21.11.2024 05:01:41
An issue was discovered in DigDash 2018R2 before p20200528, 2019R1 before p20200528, 2019R2 before p20200430, and 2020R1 before p20200507. A cross-site scripting (XSS) vulnerability exists in the login menu.
7.5
CVE-2020-13650
- EPSS 0.28%
- Veröffentlicht 15.06.2020 19:15:09
- Zuletzt bearbeitet 21.11.2024 05:01:40
An issue was discovered in DigDash 2018R2 before p20200210 and 2019R1 before p20200210. The login page is vulnerable to Server-Side Request Forgery (SSRF) that allows use of the application as a proxy. Sent to an external server, a forged request dis...
1