Trytond@5.0.0 Security Vulnerabilities and Issues — Trytond@5.0.0 CVE List

Lucene search

TrytonTrytond5.0.0

3 matches found

CVE•added 2022/03/10 5:47 p.m.•143 views

CVE-2022-26662

An XML Entity Expansion (XEE) issue was discovered in Tryton Application Platform (Server) 5.x through 5.0.45, 6.x through 6.0.15, and 6.1.x and 6.2.x through 6.2.5, and Tryton Application Platform (Command Line Client (proteus)) 5.x through 5.0.11, 6.x through 6.0.4, and 6.1.x and 6.2.x through 6....

7.5CVSS7.2AI score0.05585EPSS

CVE•added 2022/03/10 5:47 p.m.•131 views

CVE-2022-26661

An XXE issue was discovered in Tryton Application Platform (Server) 5.x through 5.0.45, 6.x through 6.0.15, and 6.1.x and 6.2.x through 6.2.5, and Tryton Application Platform (Command Line Client (proteus)) 5.x through 5.0.11, 6.x through 6.0.4, and 6.1.x and 6.2.x through 6.2.1. An authenticated u...

6.5CVSS6.5AI score0.00484EPSS

CVE•added 2019/04/05 1:29 a.m.•78 views

CVE-2019-10868

In trytond/model/modelstorage.py in Tryton 4.2 before 4.2.21, 4.4 before 4.4.19, 4.6 before 4.6.14, 4.8 before 4.8.10, and 5.0 before 5.0.6, an authenticated user can order records based on a field for which he has no access right. This may allow the user to guess values.

6.5CVSS6.1AI score0.00283EPSS