VYPR

WebPort

by WebPort

CVEs (6)

  • CVE-2020-18667CriJun 24, 2021
    risk 0.64cvss 9.8epss 0.01

    SQL Injection vulnerability in WebPort <=1.19.1 via the new connection, parameter name in type-conn.

  • CVE-2020-23715HigJun 28, 2021
    risk 0.56cvss 8.6epss 0.02

    Directory Traversal vulnerability in Webport CMS 1.19.10.17121 via the file parameter to file/download.

  • CVE-2020-18668MedJun 24, 2021
    risk 0.35cvss 5.4epss 0.01

    Cross Site Scripting (XSS) vulnerabililty in WebPort <=1.19.1 via the description parameter to script/listcalls.

  • CVE-2020-18665MedJun 24, 2021
    risk 0.35cvss 5.3epss 0.02

    Directory Traversal vulnerability in WebPort <=1.19.1 in tags of system settings.

  • CVE-2020-18664MedJun 24, 2021
    risk 0.35cvss 5.4epss 0.01

    Cross Site Scripting (XSS) vulnerability in WebPort <=1.19.1via the connection name parameter in type-conn.

  • CVE-2020-23659MedAug 26, 2020
    risk 0.35cvss 5.4epss 0.01

    WebPort-v1.19.17121 is affected by Cross Site Scripting (XSS) on the "connections" feature.