Lucene search
Write-Back Manager Security Vulnerabilities - CVSS Score 9 - 10
cve
An arbitrary file upload vulnerability in Xpand IT Write-back Manager v2.3.1 allows attackers to execute arbitrary code via a crafted jsp file.
9.8CVSS
9.4AI Score
0.001EPSS
2024-01-19 02:15 PM
10
cve
Xpand IT Write-back Manager v2.3.1 uses weak secret keys to sign JWT tokens. This allows attackers to easily obtain the secret key used to sign JWT tokens via a bruteforce attack.
9.1CVSS
8.9AI Score
0.001EPSS
2023-12-20 01:15 AM
10