Groupsession

Groupsession

20 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.8

CVE-2021-20876

  • EPSS 0.23%
  • Veröffentlicht 24.12.2021 07:15:06
  • Zuletzt bearbeitet 21.11.2024 05:47:19

Path traversal vulnerability in GroupSession Free edition ver5.1.1 and earlier, GroupSession byCloud ver5.1.1 and earlier, and GroupSession ZION ver5.1.1 and earlier allows an attacker with an administrative privilege to obtain sensitive information ...

6.1

CVE-2021-20875

  • EPSS 0.24%
  • Veröffentlicht 24.12.2021 07:15:06
  • Zuletzt bearbeitet 21.11.2024 05:47:19

Open redirect vulnerability in GroupSession Free edition ver5.1.1 and earlier, GroupSession byCloud ver5.1.1 and earlier, and GroupSession ZION ver5.1.1 and earlier allows a remote unauthenticated attacker to redirect users to arbitrary web sites and...

7.5

CVE-2021-20874

  • EPSS 0.64%
  • Veröffentlicht 24.12.2021 07:15:06
  • Zuletzt bearbeitet 21.11.2024 05:47:19

Incorrect permission assignment for critical resource vulnerability in GroupSession Free edition ver5.1.1 and earlier, GroupSession byCloud ver5.1.1 and earlier, and GroupSession ZION ver5.1.1 and earlier allows a remote unauthenticated attacker to a...

6.1

CVE-2021-20789

  • EPSS 0.27%
  • Veröffentlicht 30.07.2021 14:15:14
  • Zuletzt bearbeitet 21.11.2024 05:47:11

Open redirect vulnerability in GroupSession (GroupSession Free edition from ver2.2.0 to the version prior to ver5.1.0, GroupSession byCloud from ver3.0.3 to the version prior to ver5.1.0, and GroupSession ZION from ver3.0.3 to the version prior to ve...

4.3

CVE-2021-20788

  • EPSS 0.13%
  • Veröffentlicht 30.07.2021 14:15:14
  • Zuletzt bearbeitet 21.11.2024 05:47:11

Server-side request forgery (SSRF) vulnerability in GroupSession (GroupSession Free edition from ver2.2.0 to the version prior to ver5.1.0, GroupSession byCloud from ver3.0.3 to the version prior to ver5.1.0, and GroupSession ZION from ver3.0.3 to th...

4.8

CVE-2021-20787

  • EPSS 0.21%
  • Veröffentlicht 30.07.2021 14:15:14
  • Zuletzt bearbeitet 21.11.2024 05:47:11

Cross-site scripting vulnerability in GroupSession (GroupSession Free edition from ver2.2.0 to the version prior to ver5.1.0, GroupSession byCloud from ver3.0.3 to the version prior to ver5.1.0, and GroupSession ZION from ver3.0.3 to the version prio...

4.3

CVE-2021-20786

  • EPSS 0.09%
  • Veröffentlicht 30.07.2021 14:15:14
  • Zuletzt bearbeitet 21.11.2024 05:47:11

Cross-site request forgery (CSRF) vulnerability in GroupSession (GroupSession Free edition from ver2.2.0 to the version prior to ver5.1.0, GroupSession byCloud from ver3.0.3 to the version prior to ver5.1.0, and GroupSession ZION from ver3.0.3 to the...

4.8

CVE-2021-20785

  • EPSS 0.21%
  • Veröffentlicht 30.07.2021 14:15:14
  • Zuletzt bearbeitet 21.11.2024 05:47:11

Cross-site scripting vulnerability in GroupSession (GroupSession Free edition from ver2.2.0 to the version prior to ver5.1.0, GroupSession byCloud from ver3.0.3 to the version prior to ver5.1.0, and GroupSession ZION from ver3.0.3 to the version prio...

6.1

CVE-2017-2166

  • EPSS 0.18%
  • Veröffentlicht 26.01.2018 16:29:00
  • Zuletzt bearbeitet 21.11.2024 03:23:01

Open redirect vulnerability in GroupSession version 4.7.0 and earlier allows an attacker to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.

6.5

CVE-2017-2165

  • EPSS 0.27%
  • Veröffentlicht 09.06.2017 16:29:01
  • Zuletzt bearbeitet 20.04.2025 01:37:25

GroupSession versions 4.6.4 and earlier allows remote authenticated attackers to bypass access restrictions to obtain sensitive information such as emails via unspecified vectors.