Lucene search
K

6 matches found

CNNVD
CNNVD
added 2023/04/03 12:0 a.m.4 views

SAS Admin Console 跨站脚本漏洞

Sas Institute SAS Admin Console is an advanced analytics and business intelligence platform from Sas Institute, Inc. A security vulnerability exists in SAS Admin Console version 9.4, which stems from insufficient validation and cleaning of data entry for user-created and edited form fields...

5.4CVSS5.7AI score0.00596EPSS
Exploits0References4
NVD
NVD
added 2021/08/13 4:15 p.m.16 views

CVE-2021-27402

The SAS Admin portal of Mitel MiCollab before 9.2 FP2 could allow an unauthenticated attacker to access view and modify user data by injecting arbitrary directory paths due to improper URL validation, aka Directory Traversal...

6.5CVSS0.01067EPSS
Exploits0References2
OSV
OSV
added 2021/08/13 4:15 p.m.6 views

CVE-2021-27402

The SAS Admin portal of Mitel MiCollab before 9.2 FP2 could allow an unauthenticated attacker to access view and modify user data by injecting arbitrary directory paths due to improper URL validation, aka Directory Traversal...

6.5CVSS5.9AI score0.01067EPSS
Exploits0References2
Prion
Prion
added 2021/08/13 4:15 p.m.20 views

Directory traversal

The SAS Admin portal of Mitel MiCollab before 9.2 FP2 could allow an unauthenticated attacker to access view and modify user data by injecting arbitrary directory paths due to improper URL validation, aka Directory Traversal...

6.4CVSS6.6AI score0.01067EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2021/08/13 3:25 p.m.58 views

CVE-2021-27402

Mitel MiCollab’s SAS Admin portal before 9.2 FP2 is affected by a directory traversal vulnerability allowing an unauthenticated attacker to view and modify user data through improper URL validation. Affected: MiCollab versions prior to 9.2 FP2. Root cause: improper validation enabling arbitrary d...

6.5CVSS6.5AI score0.01067EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2021/08/13 3:25 p.m.10 views

CVE-2021-27402

The SAS Admin portal of Mitel MiCollab before 9.2 FP2 could allow an unauthenticated attacker to access view and modify user data by injecting arbitrary directory paths due to improper URL validation, aka Directory Traversal...

6.8AI score0.01067EPSS
Exploits0References2
Rows per page
Query Builder