arxes-tolina
by Microsoft
CVEs (2)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2019-19676 | Cri | 0.63 | 9.6 | 0.01 | Mar 18, 2020 | A CSV injection in arxes-tolina 3.0.0 allows malicious users to gain remote control of other computers. By entering formula code in the following columns: Kundennummer, Firma, Street, PLZ, Ort, Zahlziel, and Bemerkung, an attacker can create a user with a name that contains… | ||
| CVE-2019-19677 | Med | 0.28 | 4.3 | 0.01 | Mar 18, 2020 | arxes-tolina 3.0.0 allows User Enumeration. |
- risk 0.63cvss 9.6epss 0.01
A CSV injection in arxes-tolina 3.0.0 allows malicious users to gain remote control of other computers. By entering formula code in the following columns: Kundennummer, Firma, Street, PLZ, Ort, Zahlziel, and Bemerkung, an attacker can create a user with a name that contains…
- risk 0.28cvss 4.3epss 0.01
arxes-tolina 3.0.0 allows User Enumeration.