Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
Coins-globalCoins Construction Cloud

4 matches found

CVE
CVEadded 2022/01/24 8:15 p.m.37 views

CVE-2021-45224

An issue was discovered in COINS Construction Cloud 11.12. In several locations throughout the application, JavaScript code is passed as a URL parameter. Attackers can trivially alter this code to cause malicious behaviour. The application is therefore vulnerable to reflected XSS via malicious URLs...

6.1CVSS5.9AI score0.00486EPSS
CVE
CVEadded 2022/01/24 8:15 p.m.35 views

CVE-2021-45226

An issue was discovered in COINS Construction Cloud 11.12. Due to improper validation of user-controlled HTTP headers, attackers can cause it to send password-reset e-mails pointing to arbitrary websites.

6.5CVSS6.5AI score0.00305EPSS
CVE
CVEadded 2022/01/24 8:15 p.m.34 views

CVE-2021-45223

An issue was discovered in COINS Construction Cloud 11.12. Due to insufficient input neutralization, it is vulnerable to denial of service attacks via forced server crashes.

6.5CVSS6.3AI score0.00537EPSS
CVE
CVEadded 2022/01/24 8:15 p.m.34 views

CVE-2021-45225

An issue was discovered in COINS Construction Cloud 11.12. Due to improper input neutralization, it is vulnerable to reflected cross-site scripting (XSS) via malicious links (affecting the search window and activity view window).

6.1CVSS5.9AI score0.00486EPSS