Channel Platform@5.0.33 ccb Security Vulnerabilities and Issues — Channel Platform@5.0.33 ccb CVE List

Lucene search

JexpertsChannel Platform5.0.33 ccb

2 matches found

CVE•added 2014/11/13 9:32 p.m.•27 views

CVE-2014-8557

Multiple cross-site scripting (XSS) vulnerabilities in JExperts Channel Platform 5.0.33_CCB allow remote attackers to inject arbitrary web script or HTML via the (1) usuario.nome variable in an editarUsuario action to usuario.do or (2) titulo.form variable in a novoChamado action to ticket.do.

4.3CVSS5.8AI score0.00256EPSS

CVE•added 2014/11/25 3:59 p.m.•26 views

CVE-2014-8558

JExperts Channel Platform 5.0.33_CCB allows remote authenticated users to bypass access restrictions via crafted action and key parameters.

6.5CVSS6.5AI score0.00191EPSS