Aquarius Cms@* Security Vulnerabilities and Issues — Aquarius Cms@* CVE List

Lucene search

AquaverdeAquarius Cms*

3 matches found

CVE•added 2019/07/15 6:15 p.m.•31 views

CVE-2019-1010308

Aquaverde GmbH Aquarius CMS prior to version 4.1.1 is affected by: Incorrect Access Control. The impact is: The access to the log file is not restricted. It contains sensitive information like passwords etc. The component is: log file. The attack vector is: open the file.

9.8CVSS9.2AI score0.00305EPSS

CVE•added 2019/04/24 2:29 p.m.•29 views

CVE-2019-9724

aquaverde Aquarius CMS through 4.3.5 allows Information Exposure through Log Files because of an error in the Log-File writer component.

7.5CVSS7.5AI score0.00333EPSS

CVE•added 2019/04/24 3:29 p.m.•26 views

CVE-2019-9734

Aquarius CMS through 4.3.5 writes POST and GET parameters (including passwords) to a log file due to an overwriting of configuration parameters under certain circumstances.

7.5CVSS7.5AI score0.00316EPSS