CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

NVD•added 2021/03/03 8:15 p.m.•9 views

CVE-2021-27931

LumisXP aka Lumis Experience Platform before 10.0.0 allows unauthenticated blind XXE via an API request to PageControllerXml.jsp. One can send a request crafted with an XXE payload and achieve outcomes such as reading local server files or denial of service...

9.1CVSS0.89416EPSS

Exploits1References1

OSV•added 2021/03/03 8:15 p.m.•2 views

CVE-2021-27931

9.1CVSS7.3AI score

Exploits0References1

Prion•added 2021/03/03 8:15 p.m.•25 views

Design/Logic Flaw

6.4CVSS8.8AI score0.89416EPSS

Exploits1References1Affected Software1

CVE•added 2021/03/03 7:38 p.m.•63 views

CVE-2021-27931

LumisXP

9.1CVSS8.8AI score0.89416EPSS

In wildExploits1References1Affected Software1

CNNVD•added 2021/03/03 12:0 a.m.•3 views

LumisXP 代码问题漏洞

LumisXP is an application from the Portuguese company LumisXP. It provides a platform for managing customers. A security vulnerability exists in LumisXP versions prior to 10.0.0 that allows unauthenticated blind XXE via an API request to PageControllerXml.jsp. An attack that exploits this...

9.1CVSS5.6AI score0.89416EPSS

Exploits1References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by