VYPR

apache fineract

by Apache

CVEs (3)

  • CVE-2023-25195HigMar 28, 2023
    risk 0.53cvss 8.1epss 0.01

    Server-Side Request Forgery (SSRF) vulnerability in Apache Software Foundation Apache Fineract. Authorized users with limited permissions can gain access to server and may be able to use server for any outbound traffic.  This issue affects Apache Fineract: from 1.4 through…

  • CVE-2023-25197MedMar 28, 2023
    risk 0.41cvss 6.3epss 0.01

    Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Apache Software Foundation apache fineract. Authorized users may be able to exploit this for limited impact on components.   This issue affects apache fineract: from 1.4…

  • CVE-2023-25196MedMar 28, 2023
    risk 0.28cvss 4.3epss 0.01

    Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Apache Software Foundation Apache Fineract. Authorized users may be able to change or add data in certain components.   This issue affects Apache Fineract: from 1.4 through…