Personal Management System@1.4.64 Security Vulnerabilities and Issues — Personal Management System@1.4.64 CVE List

Lucene search

Personal-management-systemPersonal Management System1.4.64

3 matches found

CVE•added 2024/07/05 4:15 p.m.•40 views

CVE-2024-29318

Volmarg Personal Management System 1.4.64 is vulnerable to stored cross site scripting (XSS) via upload of a SVG file with embedded javascript code.

5.4CVSS5.9AI score0.00083EPSS

CVE•added 2024/07/05 4:15 p.m.•38 views

CVE-2024-29319

Volmarg Personal Management System 1.4.64 is vulnerable to SSRF (Server Side Request Forgery) via uploading a SVG file. The server can make unintended HTTP and DNS requests to a server that the attacker controls.

9.8CVSS7AI score0.00154EPSS

CVE•added 2023/10/04 4:15 p.m.•36 views

CVE-2023-43838

An arbitrary file upload vulnerability in Personal Management System v1.4.64 allows attackers to execute arbitrary code via uploading a crafted SVG file into a user profile's avatar.

7.8CVSS7.8AI score0.00496EPSS