Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

Marmind Security Vulnerabilities

cve
cve

CVE-2020-26507

A CSV Injection (also known as Formula Injection) vulnerability in the Marmind web application with version 4.1.141.0 allows malicious users to gain remote control of other computers. By providing formula code in the “Notes” functionality in the main screen, an attacker can inject a payload into...

7.8CVSS

7.9AI Score

0.001EPSS

2020-11-05 06:15 PM
15
cve
cve

CVE-2020-26505

A Stored Cross-Site Scripting (XSS) vulnerability in the “Marmind” web application with version 4.1.141.0 allows an attacker to inject code that will later be executed by legitimate users when they open the assets containing the JavaScript code. This would allow an attacker to perform unauthorized....

6.1CVSS

5.8AI Score

0.001EPSS

2020-11-05 05:15 PM
15
cve
cve

CVE-2020-26506

An Authorization Bypass vulnerability in the Marmind web application with version 4.1.141.0 allows users with lower privileges to gain control to files uploaded by administrative users. The accessed files were not visible by the low privileged users in the web...

4.3CVSS

4.9AI Score

0.001EPSS

2020-11-05 04:15 PM
15