VYPR

TeamMate AM

by Wolterskluwer

CVEs (3)

  • CVE-2023-33438Jun 16, 2023
    risk 0.00cvss epss 0.01

    A stored Cross-site scripting (XSS) vulnerability in Wolters Kluwer TeamMate+ 35.0.11.0 allows remote attackers to inject arbitrary web script or HTML.

  • CVE-2021-44035Dec 17, 2021
    risk 0.00cvss epss 0.01

    Wolters Kluwer TeamMate AM 12.4 Update 1 mishandles attachment uploads, such that an authenticated user may download and execute malicious files.

  • CVE-2019-10253Sep 9, 2019
    risk 0.00cvss epss 0.01

    A Cross-Site Request Forgery (CSRF) vulnerability exists in TeamMate+ 21.0.0.0 that allows a remote attacker to modify application data (upload malicious/forged files on a TeamMate server, or replace existing uploaded files with malicious/forged files). The specific flaw exists…