Epesi ≫ Epesi

11 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.

6.1

CVE-2017-9621

EPSS 0.4%
Veröffentlicht 14.06.2017 21:29:00
Zuletzt bearbeitet 20.04.2025 01:37:25

Cross-site scripting (XSS) vulnerability in modules/Base/Lang/Administrator/update_translation.php in EPESI in Telaxus/EPESI 1.8.2 and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) original or (2) new parameter.

6.1

CVE-2017-9622

EPSS 0.22%
Veröffentlicht 14.06.2017 21:29:00
Zuletzt bearbeitet 20.04.2025 01:37:25

Multiple cross-site scripting (XSS) vulnerabilities in Telaxus/EPESI 1.8.2 and earlier allow remote attackers to inject arbitrary web script or HTML via crafted common data.

6.1

CVE-2017-9623

Exploit

EPSS 0.22%
Veröffentlicht 14.06.2017 21:29:00
Zuletzt bearbeitet 20.04.2025 01:37:25

Multiple cross-site scripting (XSS) vulnerabilities in Telaxus/EPESI 1.8.2 and earlier allow remote attackers to inject arbitrary web script or HTML via crafted country data.

6.1

CVE-2017-9624

Exploit

EPSS 0.22%
Veröffentlicht 14.06.2017 21:29:00
Zuletzt bearbeitet 20.04.2025 01:37:25

Multiple cross-site scripting (XSS) vulnerabilities in Telaxus/EPESI 1.8.2 and earlier allow remote attackers to inject arbitrary web script or HTML via crafted currency decimal-sign data.

4.8

CVE-2017-9366

Exploit

EPSS 0.18%
Veröffentlicht 02.06.2017 05:29:00
Zuletzt bearbeitet 20.04.2025 01:37:25

Telaxus EPESI 1.8.2 and earlier has a Stored Cross-site Scripting (XSS) vulnerability in modules/Base/Dashboard/Dashboard_0.php, which allows remote attackers to inject arbitrary web script or HTML via a crafted tab_name parameter.

5.4

CVE-2017-9331

Exploit

EPSS 0.16%
Veröffentlicht 01.06.2017 05:29:00
Zuletzt bearbeitet 20.04.2025 01:37:25

The Agenda component in Telaxus EPESI 1.8.2 and earlier has a Stored Cross-site Scripting (XSS) vulnerability in modules/Utils/RecordBrowser/RecordBrowserCommon_0.php, which allows remote attackers to inject arbitrary web script or HTML via a crafted...

6.1

CVE-2017-6487

Exploit

EPSS 0.21%
Veröffentlicht 05.03.2017 20:59:00
Zuletzt bearbeitet 20.04.2025 01:37:25

Multiple Cross-Site Scripting (XSS) issues were discovered in EPESI 1.8.1.1. The vulnerabilities exist due to insufficient filtration of user-supplied data (state, element, id, tab, cid) passed to the "EPESI-master/modules/Utils/RecordBrowser/favorit...

6.1

CVE-2017-6488

Exploit

EPSS 0.21%
Veröffentlicht 05.03.2017 20:59:00
Zuletzt bearbeitet 20.04.2025 01:37:25

Multiple Cross-Site Scripting (XSS) issues were discovered in EPESI 1.8.1.1. The vulnerabilities exist due to insufficient filtration of user-supplied data (visible, tab, cid) passed to the EPESI-master/modules/Utils/RecordBrowser/Filters/save_filter...

6.1

CVE-2017-6489

Exploit

EPSS 0.21%
Veröffentlicht 05.03.2017 20:59:00
Zuletzt bearbeitet 20.04.2025 01:37:25

Multiple Cross-Site Scripting (XSS) issues were discovered in EPESI 1.8.1.1. The vulnerabilities exist due to insufficient filtration of user-supplied data (element, state, cat, id, cid) passed to the EPESI-master/modules/Utils/Watchdog/subscribe.php...

6.1

CVE-2017-6490

Exploit

EPSS 0.21%
Veröffentlicht 05.03.2017 20:59:00
Zuletzt bearbeitet 20.04.2025 01:37:25

Multiple Cross-Site Scripting (XSS) issues were discovered in EPESI 1.8.1.1. The vulnerabilities exist due to insufficient filtration of user-supplied data (cid, value, element, mode, tab, form_name, id) passed to the EPESI-master/modules/Utils/Recor...

12>

Team-orientierte Vulnerability Management Plattform

Features der Plattform

Epesi ≫ Epesi

CVE-2017-9621

CVE-2017-9622

CVE-2017-9623

CVE-2017-9624

CVE-2017-9366

CVE-2017-9331

CVE-2017-6487

CVE-2017-6488

CVE-2017-6489

CVE-2017-6490