VYPR

Platform Server

by OutSystems

CVEs (2)

  • CVE-2021-29357HigApr 12, 2021
    risk 0.56cvss 8.6epss 0.01

    The ECT Provider component in OutSystems Platform Server 10 before 10.0.1104.0 and 11 before 11.9.0 (and LifeTime management console before 11.7.0) allows SSRF for arbitrary outbound HTTP requests.

  • CVE-2020-29441HigNov 30, 2020
    risk 0.47cvss 7.2epss 0.01

    An issue was discovered in the Upload Widget in OutSystems Platform 10 before 10.0.1019.0. An unauthenticated attacker can upload arbitrary files. In some cases, this attack may consume the available database space (Denial of Service), corrupt legitimate data if files are being…