eharmonynew
by Synel
CVEs (4)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2022-36778 | 0.00 | — | 0.00 | Sep 13, 2022 | insert HTML / js code inside input how to get to the vulnerable input : Workers > worker nickname > inject in this input the code. | |||
| CVE-2022-34768 | 0.00 | — | 0.00 | Aug 5, 2022 | insert HTML / js code inside input how to get to the vulnerable input : Workers > worker nickname > inject in this input the code. | |||
| CVE-2022-22790 | 0.00 | — | 0.01 | Jan 28, 2022 | SYNEL - eharmony Directory Traversal. Directory Traversal - is an attack against a server or a Web application aimed at unauthorized access to the file system. on the "Name" parameter the attacker can return to the root directory and open the host file. The path exposes… | |||
| CVE-2021-36718 | 0.00 | — | 0.01 | Dec 8, 2021 | SYNEL - eharmonynew / Synel Reports - The attacker can log in to the system with default credentials and export a report of eharmony system with sensetive data (Employee name, Employee ID number, Working hours etc') The vulnerabilety has been addressed and fixed on version 11.… |
- CVE-2022-36778Sep 13, 2022risk 0.00cvss —epss 0.00
insert HTML / js code inside input how to get to the vulnerable input : Workers > worker nickname > inject in this input the code.
- CVE-2022-34768Aug 5, 2022risk 0.00cvss —epss 0.00
insert HTML / js code inside input how to get to the vulnerable input : Workers > worker nickname > inject in this input the code.
- CVE-2022-22790Jan 28, 2022risk 0.00cvss —epss 0.01
SYNEL - eharmony Directory Traversal. Directory Traversal - is an attack against a server or a Web application aimed at unauthorized access to the file system. on the "Name" parameter the attacker can return to the root directory and open the host file. The path exposes…
- CVE-2021-36718Dec 8, 2021risk 0.00cvss —epss 0.01
SYNEL - eharmonynew / Synel Reports - The attacker can log in to the system with default credentials and export a report of eharmony system with sensetive data (Employee name, Employee ID number, Working hours etc') The vulnerabilety has been addressed and fixed on version 11.…