CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cross-site scripting XSS vulnerability in infoware MapSuite MapAPI 1.0.x before 1.0.36 and 1.1.x before 1.1.49 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

6.1CVSS6AI score0.00417EPSS

Exploits0References3

Prion•added 2020/01/31 6:15 p.m.•13 views

Cross site scripting

4.3CVSS6.1AI score0.00417EPSS

Exploits0References3Affected Software1

CVE•added 2020/01/31 5:51 p.m.•89 views

CVE-2014-2843

CVE-2014-2843 is a reflected XSS vulnerability in infoware MapSuite MapAPI. Affected versions are MapAPI before 1.0.36 (and 1.1.x before 1.1.49). Fixed releases are MapAPI 1.0.36 and 1.1.49. The vulnerability allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, ...

6.1CVSS6AI score0.00417EPSS

Exploits0References3Affected Software1

Cvelist•added 2020/01/31 5:51 p.m.•11 views

CVE-2014-2843

6AI score0.00417EPSS

Exploits0References3

NVD•added 2014/12/01 3:59 p.m.•11 views

CVE-2014-2233

Server-side request forgery SSRF vulnerability in the MapAPI in Infoware MapSuite before 1.0.36 and 1.1.x before 1.1.49 allows remote attackers to trigger requests to intranet servers via unspecified vectors...

5CVSS6.7AI score0.00423EPSS

Exploits0References3

Prion•added 2014/12/01 3:59 p.m.•8 views

Path traversal

Absolute path traversal vulnerability in the MapAPI in Infoware MapSuite before 1.0.36 and 1.1.x before 1.1.49 allows remote attackers to read arbitrary files via unspecified vectors...

5CVSS7.2AI score0.00493EPSS

Exploits0References3Affected Software1

Cvelist•added 2014/12/01 3:0 p.m.•15 views

CVE-2014-2233

6.7AI score0.00423EPSS

Exploits0References3

CVE•added 2014/12/01 3:0 p.m.•39 views

CVE-2014-2232

Summary (CVE-2014-2232) : Affected product: Infoware MapSuite, specifically MapAPI. Vulnerable components: MapAPI prior to 1.0.36 and 1.1.x prior to 1.1.49. Root cause: absolute path traversal that allows reading arbitrary files via unspecified vectors. Impact: partial confidentiality loss (read ...

5CVSS6.8AI score0.00493EPSS

Exploits0References3Affected Software1

CVE•added 2014/12/01 3:0 p.m.•38 views

CVE-2014-2233

CVE-2014-2233 (Infoware MapSuite MapAPI) is a Server-Side Request Forgery (SSRF) vulnerability in MapSuite MapAPI that allows an attacker to trigger requests from the vulnerable server to internal/intranet targets via specially crafted input parameters. Affected versions are MapAPI prior to 1.0.3...

5CVSS6.9AI score0.00423EPSS

Exploits0References3Affected Software1