CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
EPSS
Percentile
71.7%
Aipo from Aimluck, Inc. is groupware including functions such as scheduler and intra-office blogging. Aipo contains a SQL injection vulnerability.
Contents that are managed by Aipo may be viewed by a user that can login to Aipo.
Update the Software
Update to the latest version according to the information provided by the developer.
This issue has been resolved in Aipo Version 5.1.0.1.