3 matches found
CVE-2022-39167
IBM Spectrum Virtualize 8.5, 8.4, 8.3, 8.2, and 7.8, under certain configurations, could disclose sensitive information to an attacker using man-in-the-middle techniques. IBM X-Force ID: 235408...
SalesAgility SuiteCRM SQL Injection Vulnerability
SalesAgility SuiteCRM is a suite of enterprise-grade open source customer relationship management CRM. A SQL injection vulnerability exists in SalesAgility SuiteCRM versions 7.8.x prior to 7.8.30, 7.10.x prior to 7.10.17, and 7.11.x prior to 7.11.5, which can be exploited by an attacker to execut...
Hippo CMS Cross-Site Scripting Vulnerability
Hippo CMS is an open source Java CMS. A cross-site scripting vulnerability exists in Hippo CMS versions 10.1, 7.9, and 7.8 Enterprise Edition. The failure to filter the POST parameters "groupname" and "description" allows an attacker to insert malicious code...