Digital Asset Management Security Vulnerabilities and Issues — Digital Asset Management CVE List

Lucene search

OpenassetDigital Asset Management

2 matches found

CVE•added 2020/12/14 8:15 p.m.•28 views

CVE-2020-28860

OpenAssetDigital Asset Management (DAM) through 12.0.19 does not correctly sanitize user supplied input, incorporating it into its SQL queries, allowing for authenticated blind SQL injection.

8.8CVSS9AI score0.02416EPSS

CVE•added 2020/12/14 7:15 p.m.•25 views

CVE-2020-28858

OpenAsset Digital Asset Management (DAM) through 12.0.19 does not correctly verify whether a request made to the application was intentionally made by the user, allowing for cross-site request forgery attacks on all user functions.

8.8CVSS8.6AI score0.00366EPSS