Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 8:0 a.m.6 views

CVE-2024-22219

XML External Entity XXE vulnerability in Terminalfour 8.0.0001 through 8.3.18 and XML JDBC versions up to 1.0.4 allows authenticated users to submit malicious XML via unspecified features which could lead to various actions such as accessing the underlying server, remote code execution RCE, or...

6.3CVSS7.8AI score0.00473EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:33 a.m.9 views

CVE-2024-22218

XML External Entity XXE vulnerability in Terminalfour 8.0.0001 through 8.3.18 and XML JDBC versions up to 1.0.4 allows authenticated users to submit malicious XML via unspecified features which could lead to various actions such as accessing the underlying server, remote code execution RCE, or...

8.8CVSS7.8AI score0.00723EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:33 a.m.6 views

CVE-2024-22217

A Server-Side Request Forgery SSRF vulnerability in Terminalfour before 8.3.19 allows authenticated users to use specific features to access internal services including sensitive information on the server that Terminalfour runs on...

6.5CVSS6.4AI score0.0034EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/08/15 12:0 a.m.6 views

PT-2024-19282 · Terminalfour · Terminalfour

Name of the Vulnerable Software and Affected Versions: Terminalfour versions 8.0.0001 through 8.3.18 XML JDBC versions up to 1.0.4 Description: The issue allows authenticated users to submit malicious XML via unspecified features, potentially leading to accessing the underlying server, remote cod...

8.8CVSS7.5AI score0.00723EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2024/02/21 12:0 a.m.7 views

PT-2024-19285 · Terminalfour · Terminalfour +1

Name of the Vulnerable Software and Affected Versions: Terminalfour versions 7.4 through 7.4.0004 QP3 Terminalfour versions 8 through 8.3.19 Formbank versions through 2.1.10-FINAL Description: An issue allows Unauthenticated Stored Cross-Site Scripting, potentially leading to Admin Session...

6.3CVSS6.2AI score0.00369EPSS
Exploits0References5
Rows per page
Query Builder