VYPR

Nedit

by Nedit

CVEs (26)

  • CVE-2020-15030MedJul 7, 2020
    risk 0.35cvss 5.4epss 0.01

    NeDi 1.9C is vulnerable to cross-site scripting (XSS) attack. The application allows an attacker to execute arbitrary JavaScript code via the Topology-Routes.php rtr parameter.

  • CVE-2020-15029MedJul 7, 2020
    risk 0.35cvss 5.4epss 0.01

    NeDi 1.9C is vulnerable to cross-site scripting (XSS) attack. The application allows an attacker to execute arbitrary JavaScript code via the Assets-Management.php sn parameter.

  • CVE-2020-15028MedJul 7, 2020
    risk 0.35cvss 5.4epss 0.01

    NeDi 1.9C is vulnerable to a cross-site scripting (XSS) attack. The application allows an attacker to execute arbitrary JavaScript code via the Topology-Map.php xo parameter.

  • CVE-2020-15037MedJul 7, 2020
    risk 0.35cvss 5.4epss 0.01

    NeDi 1.9C is vulnerable to cross-site scripting (XSS) attack. The application allows an attacker to execute arbitrary JavaScript code via the Reports-Devices.php page st[] parameter.

  • CVE-2020-15036MedJul 7, 2020
    risk 0.35cvss 5.4epss 0.01

    NeDi 1.9C is vulnerable to cross-site scripting (XSS) attack. The application allows an attacker to execute arbitrary JavaScript code via the Topology-Linked.php dv parameter.

  • CVE-2001-0556Aug 22, 2001
    risk 0.00cvss epss 0.01

    The Nirvana Editor (NEdit) 5.1.1 and earlier allows a local attacker to overwrite other users' files via a symlink attack on (1) backup files or (2) temporary files used when nedit prints a file or portions of a file.

Page 2 of 2