Smartertrack@* Security Vulnerabilities and Issues — Smartertrack@* CVE List

Lucene search

SmartertoolsSmartertrack*

4 matches found

CVE•added 2022/03/14 1:15 p.m.•107 views

CVE-2022-24385

A Direct Object Access vulnerability in SmarterTools SmarterTrack leads to information disclosure This issue affects: SmarterTools SmarterTrack 100.0.8019.14010.

6.5CVSS6.2AI score0.00231EPSS

CVE•added 2022/03/14 1:15 p.m.•107 views

CVE-2022-24386

Stored XSS in SmarterTools SmarterTrack This issue affects: SmarterTools SmarterTrack 100.0.8019.14010.

8.8CVSS5.9AI score0.00337EPSS

CVE•added 2022/03/14 1:15 p.m.•104 views

CVE-2022-24384

Cross-site Scripting (XSS) vulnerability in SmarterTools SmarterTrack This issue affects: SmarterTools SmarterTrack 100.0.8019.14010.

8.8CVSS6.1AI score0.49396EPSS

CVE•added 2022/03/14 1:15 p.m.•96 views

CVE-2022-24387

With administrator or admin privileges the application can be tricked into overwriting files in app_data/Config folder, e.g. the systemsettings.xml file. THis is possible in SmarterTrack v100.0.8019.14010

9.1CVSS7.5AI score0.00497EPSS