Marmind

Marmind

3 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.3

CVE-2020-26507

Exploit
  • EPSS 0.38%
  • Veröffentlicht 05.11.2020 18:15:12
  • Zuletzt bearbeitet 21.11.2024 05:19:55

A CSV Injection (also known as Formula Injection) vulnerability in the Marmind web application with version 4.1.141.0 allows malicious users to gain remote control of other computers. By providing formula code in the “Notes” functionality in the main...

6.1

CVE-2020-26505

Exploit
  • EPSS 0.42%
  • Veröffentlicht 05.11.2020 17:15:12
  • Zuletzt bearbeitet 21.11.2024 05:19:55

A Stored Cross-Site Scripting (XSS) vulnerability in the “Marmind” web application with version 4.1.141.0 allows an attacker to inject code that will later be executed by legitimate users when they open the assets containing the JavaScript code. This...

4.3

CVE-2020-26506

Exploit
  • EPSS 0.16%
  • Veröffentlicht 05.11.2020 16:15:18
  • Zuletzt bearbeitet 21.11.2024 05:19:55

An Authorization Bypass vulnerability in the Marmind web application with version 4.1.141.0 allows users with lower privileges to gain control to files uploaded by administrative users. The accessed files were not visible by the low privileged users ...