4 matches found
CVE-2022-38339
Safe Software FME Server v2021.2.5, v2022.0.0.2 and below contains a cross-site scripting XSS vulnerability which allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the login page...
CVE-2022-38341
Safe Software FME Server v2021.2.5 and below does not employ server-side validation...
CVE-2022-38341
Safe Software FME Server v2021.2.5 and below does not employ server-side validation...
CVE-2022-38342
Safe Software FME Server v2021.2.5, v2022.0.0.2 and below was discovered to contain a XML External Entity XXE vulnerability which allows authenticated attackers to perform data exfiltration or Server-Side Request Forgery SSRF attacks...