Lucene search

Agilepoint Nx Security Vulnerabilities

cve

CVE-2022-30619

Editable SQL Queries behind Base64 encoding sending from the Client-Side to The Server-Side for a particular API used in legacy Work Center module. He attack is available for any authenticated user, in any kind of rule. under the function : /AgilePointServer/Extension/FetchUsingEncodedData in the p...

8.8CVSS

8.7AI Score

0.001EPSS

2022-07-06 02:15 PM

407

cve

CVE-2023-24507

AgilePoint NX v8.0 SU2.2 & SU2.3 – Insecure File Upload - Vulnerability allows insecure file upload, by an unspecified request.

9.8CVSS

9.4AI Score

0.001EPSS

2023-05-08 09:15 PM

cve

CVE-2023-31178

AgilePoint NX v8.0 SU2.2 & SU2.3 – Arbitrary File Delete Vulnerability allows arbitrary file deletion, by an unspecified request.

9.1CVSS

9.2AI Score

0.001EPSS

2023-05-08 09:15 PM

cve

CVE-2023-31179

AgilePoint NX v8.0 SU2.2 & SU2.3 - Path traversal - Vulnerability allows path traversal and downloading files from the server, by an unspecified request.

7.5CVSS

7.6AI Score

0.001EPSS

2023-05-08 09:15 PM