CVE-2024-41698
- EPSS 0.23%
- Veröffentlicht 20.08.2024 12:15:06
- Zuletzt bearbeitet 03.09.2024 20:18:57
Priority – CWE-200: Exposure of Sensitive Information to an Unauthorized Actor
CVE-2024-41699
- EPSS 0.18%
- Veröffentlicht 20.08.2024 12:15:06
- Zuletzt bearbeitet 03.09.2024 20:17:45
Priority – CWE-552: Files or Directories Accessible to External Parties
CVE-2024-41697
- EPSS 0.26%
- Veröffentlicht 20.08.2024 12:15:05
- Zuletzt bearbeitet 03.09.2024 20:19:45
Priority - CWE-80: Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS)
CVE-2023-23459
- EPSS 0.39%
- Veröffentlicht 15.02.2023 19:15:12
- Zuletzt bearbeitet 19.03.2025 20:15:17
Priority Windows may allow Command Execution via SQL Injection using an unspecified method.
CVE-2023-23460
- EPSS 0.29%
- Veröffentlicht 15.02.2023 19:15:12
- Zuletzt bearbeitet 19.03.2025 19:15:38
Priority Web version 19.1.0.68, parameter manipulation on an unspecified end-point may allow authentication bypass.
CVE-2022-23172
- EPSS 0.13%
- Veröffentlicht 06.07.2022 14:15:18
- Zuletzt bearbeitet 21.11.2024 06:48:07
An attacker can access to "Forgot my password" button, as soon as he puts users is valid in the system, the system would issue a message that a password reset email had been sent to user. This way you can verify which users are in the system and whic...
CVE-2022-23173
- EPSS 0.18%
- Veröffentlicht 06.07.2022 14:15:18
- Zuletzt bearbeitet 21.11.2024 06:48:07
this vulnerability affect user that even not allowed to access via the web interface. First of all, the attacker needs to access the "Login menu - demo site" then he can see in this menu all the functionality of the application. If the attacker will ...