Pacsone Server Security Vulnerabilities and Issues — Pacsone Server CVE List

Lucene search

RainbowfishsoftwarePacsone Server

7 matches found

CVE•added 2021/02/03 1:15 p.m.•36 views

CVE-2020-29164

PacsOne Server (PACS Server In One Box) below 7.1.1 is affected by cross-site scripting (XSS).

6.1CVSS6AI score0.13288EPSS

CVE•added 2021/02/03 1:15 p.m.•35 views

CVE-2020-29165

PacsOne Server (PACS Server In One Box) below 7.1.1 is affected by incorrect access control, which can result in remotely gaining administrator privileges.

9.8CVSS9.4AI score0.0108EPSS

CVE•added 2021/02/03 1:15 p.m.•31 views

CVE-2020-29166

PacsOne Server (PACS Server In One Box) below 7.1.1 is affected by file read/manipulation, which can result in remote information disclosure.

7.5CVSS7.2AI score0.01011EPSS

CVE•added 2021/02/03 1:15 p.m.•30 views

CVE-2020-29163

PacsOne Server (PACS Server In One Box) below 7.1.1 is affected by SQL injection.

8.8CVSS9.1AI score0.00507EPSS

CVE•added 2020/09/30 9:15 p.m.•27 views

CVE-2020-12715

RainbowFish PacsOne Server 6.8.4 has Incorrect Access Control.

8.8CVSS8.6AI score0.00615EPSS

CVE•added 2020/09/30 9:15 p.m.•27 views

CVE-2020-12869

RainbowFish PacsOne Server 6.8.4 allows XSS.

5.4CVSS5.5AI score0.00343EPSS

CVE•added 2020/09/30 9:15 p.m.•24 views

CVE-2020-12870

RainbowFish PacsOne Server 6.8.4 allows SQL injection on the username parameter in the signup page.

9.8CVSS9.8AI score0.0103EPSS