VYPR

Sahi Pro

by Sahi Pro

CVEs (5)

  • CVE-2019-13597CriJul 14, 2019
    risk 0.68cvss 9.8epss 0.14

    _s_/sprm/_s_/dyn/Player_setScriptFile in Sahi Pro 8.0.0 allows command execution. It allows one to run ".sah" scripts via Sahi Launcher. Also, one can create a new script with an editor. It is possible to execute commands on the server using the _execute() function.

  • CVE-2019-15102CriSep 6, 2019
    risk 0.64cvss 9.8epss 0.04

    An issue was discovered in Tyto Sahi Pro 6.x through 8.0.0. TestRunner_Non_distributed (and distributed end points) does not have any authentication mechanism. This allow an attacker to execute an arbitrary script on the remote Sahi Pro server. There is also a password-protected…

  • CVE-2018-20468HigJun 17, 2019
    risk 0.57cvss 8.8epss 0.02

    An issue was discovered in Tyto Sahi Pro through 7.x.x and 8.0.0. A web reports module has "export to excel features" that are vulnerable to CSV injection. An attacker can embed Excel formulas inside an automation script that, when exported after execution, results in code…

  • CVE-2019-13063HigSep 23, 2019
    risk 0.54cvss 7.5epss 0.27

    Within Sahi Pro 8.0.0, an attacker can send a specially crafted URL to include any victim files on the system via the script parameter on the Script_view page. This will result in file disclosure (i.e., being able to pull any file from the remote victim application). This can be…

  • CVE-2019-13066MedOct 29, 2019
    risk 0.40cvss 6.1epss 0.01

    Sahi Pro 8.0.0 has a script manager arena located at _s_/dyn/pro/DBReports with many different areas that are vulnerable to reflected XSS, by updating a script's Script Name, Suite Name, Base URL, Android, iOS, Scripts Run, Origin Machine, or Comment field. The sql parameter can…