Lucene search
Cyclos Security Vulnerabilities
cve
Cyclos 4 PRO 4.14.7 and before does not validate user input at error inform, which allows remote unauthenticated attacker to execute javascript code via undefine enum...
6.1CVSS
6.6AI Score
0.003EPSS
2022-05-02 12:15 AM
58
2
cve
A Dom-based Cross-site scripting (XSS) vulnerability at registration account in Cyclos 4 PRO.14.7 and before allows remote attackers to inject arbitrary web script or HTML via the groupId...
6.1CVSS
6AI Score
0.003EPSS
2022-05-02 12:15 AM
60
3