10 matches found
CVE-2022-38489
An issue was discovered in EasyVista 2020.2.125.3 and 2022.1.109.0.03 It is prone to stored Cross-site Scripting XSS. Version 2022.1.110.1.02 fixes the vulnerably...
CVE-2022-38491
An issue was discovered in EasyVista 2020.2.125.3 and 2022.1.109.0.03. Part of the application does not implement protection against brute-force attacks. Version 2022.1.133.0 corrects this issue...
CVE-2022-38492
An issue was discovered in EasyVista 2020.2.125.3 and 2022.1.109.0.03. One parameter allows SQL injection. Version 2022.1.110.1.02 fixes the vulnerability...
CVE-2022-38490
An issue was discovered in EasyVista 2020.2.125.3 and 2022.1.109.0.03. Some parameters allow SQL injection. Version 2022.1.110.1.02 corrects this issue...
Design/Logic Flaw
An issue was discovered in EasyVista 2020.2.125.3 and 2022.1.109.0.03. Part of the application does not implement protection against brute-force attacks. Version 2022.1.133.0 corrects this issue...
Cross site scripting
An issue was discovered in EasyVista 2020.2.125.3 and 2022.1.109.0.03 It is prone to stored Cross-site Scripting XSS. Version 2022.1.110.1.02 fixes the vulnerably...
CVE-2022-38489
CVE-2022-38489 affects EasyVista: vulnerable in versions 2020.2.125.3 and 2022.1.109.0.03 due to stored XSS. The fix is version 2022.1.110.1.02. Connected sources confirm EasyVista’s stored XSS issue and the updated release that resolves it; no exploitation details provided in the documents.
PT-2023-13616 · Easyvista · Easyvista
Name of the Vulnerable Software and Affected Versions: EasyVista versions 2020.2.125.3 through 2022.1.109.0.03 Description: An issue was discovered that allows SQL injection through one parameter. Recommendations: For versions 2020.2.125.3 through 2022.1.109.0.03, update to version 2022.1.110.1.0...
PT-2023-13615 · Easyvista · Easyvista
Name of the Vulnerable Software and Affected Versions: EasyVista versions 2020.2.125.3 through 2022.1.109.0.03 Description: An issue was discovered in the application where part of it does not implement protection against brute-force attacks. Recommendations: For versions 2020.2.125.3 through...
CVE-2022-38492
An issue was discovered in EasyVista 2020.2.125.3 and 2022.1.109.0.03. One parameter allows SQL injection. Version 2022.1.110.1.02 fixes the vulnerability...