VYPR

Facilemanager

by Facilemanager

Source repositories

CVEs (4)

  • CVE-2026-30919Mar 9, 2026
    risk 0.00cvss epss 0.00

    facileManager is a modular suite of web apps built with the sysadmin in mind. Prior to 6.0.4 , stored XSS (also known as persistent or second-order XSS) occurs when an application receives data from an untrusted source and includes that data in its subsequent HTTP responses in…

  • CVE-2026-30918Mar 9, 2026
    risk 0.00cvss epss 0.00

    facileManager is a modular suite of web apps built with the sysadmin in mind. Prior to 6.0.4 , a reflected XSS occurs when an application receives data from an untrusted source and uses it in its HTTP responses in a way that could lead to vulnerabilities. It is possible to…

  • CVE-2024-24573HigJan 31, 2024
    risk 0.00cvss 8.8epss 0.01

    facileManager is a modular suite of web apps built with the sysadmin in mind. In versions 4.5.0 and earlier, when a user updates their profile, a POST request containing user information is sent to the endpoint server/fm-modules/facileManager/ajax/processPost.php. It was found…

  • CVE-2024-24571MedJan 31, 2024
    risk 0.00cvss 5.4epss 0.00

    facileManager is a modular suite of web apps built with the sysadmin in mind. For the facileManager web application versions 4.5.0 and earlier, we have found that XSS was present in almost all of the input fields as there is insufficient input validation.

VYPR — Vulnerability Intelligence