Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
ArcherirmArcher

4 matches found

CVE
CVEadded 2023/07/14 6:15 p.m.2477 views

CVE-2023-32761

Cross Site Request Forgery (CSRF) vulnerability in Archer Platform before v.6.13 and fixed in v.6.12.0.6 and v.6.13.0 allows an authenticated attacker to execute arbitrary code via a crafted request.

8.1CVSS8AI score0.00328EPSS
CVE
CVEadded 2024/05/06 4:15 p.m.44 views

CVE-2024-34092

An issue was discovered in Archer Platform 6 before 2024.04. Authentication was mishandled because lock did not terminate an existing session. 6.14 P3 (6.14.0.3) is also a fixed release.

8.8CVSS6.8AI score0.00092EPSS
CVE
CVEadded 2023/12/12 8:15 a.m.24 views

CVE-2023-48641

Archer Platform 6.x before 6.14 P1 HF2 (6.14.0.1.2) contains an insecure direct object reference vulnerability. An authenticated malicious user in a multi-instance installation could potentially exploit this vulnerability by manipulating application resource references in user requests to bypass au...

8.8CVSS8.7AI score0.00009EPSS
CVE
CVEadded 2023/10/17 5:15 a.m.20 views

CVE-2023-45358

Archer Platform 6.x before 6.13 P2 HF2 (6.13.0.2.2) contains a stored cross-site scripting (XSS) vulnerability. A remote authenticated malicious Archer user could potentially exploit this vulnerability to store malicious HTML or JavaScript code in a trusted application data store. When victim users...

8.5CVSS4.9AI score0.00148EPSS