Smartertrack Security Vulnerabilities and Issues — Smartertrack CVE List

Lucene search

SmartertoolsSmartertrack

6 matches found

CVE•added 2022/03/14 1:15 p.m.•107 views

CVE-2022-24385

A Direct Object Access vulnerability in SmarterTools SmarterTrack leads to information disclosure This issue affects: SmarterTools SmarterTrack 100.0.8019.14010.

6.5CVSS6.2AI score0.00231EPSS

CVE•added 2022/03/14 1:15 p.m.•107 views

CVE-2022-24386

Stored XSS in SmarterTools SmarterTrack This issue affects: SmarterTools SmarterTrack 100.0.8019.14010.

8.8CVSS5.9AI score0.00337EPSS

CVE•added 2022/03/14 1:15 p.m.•104 views

CVE-2022-24384

Cross-site Scripting (XSS) vulnerability in SmarterTools SmarterTrack This issue affects: SmarterTools SmarterTrack 100.0.8019.14010.

8.8CVSS6.1AI score0.49396EPSS

CVE•added 2022/03/14 1:15 p.m.•96 views

CVE-2022-24387

With administrator or admin privileges the application can be tricked into overwriting files in app_data/Config folder, e.g. the systemsettings.xml file. THis is possible in SmarterTrack v100.0.8019.14010

9.1CVSS7.5AI score0.00497EPSS

CVE•added 2010/08/25 8:0 p.m.•34 views

CVE-2009-4994

Cross-site scripting (XSS) vulnerability in frmKBSearch.aspx in SmarterTools SmarterTrack before 4.0.3504 allows remote attackers to inject arbitrary web script or HTML via the search parameter.

4.3CVSS5.9AI score0.00296EPSS

CVE•added 2010/08/25 8:0 p.m.•30 views

CVE-2009-4995

Cross-site scripting (XSS) vulnerability in frmTickets.aspx in SmarterTools SmarterTrack before 4.0.3504 allows remote attackers to inject arbitrary web script or HTML via the email address field. NOTE: the provenance of this information is unknown; the details are obtained solely from third party ...

4.3CVSS5.7AI score0.00263EPSS