VYPR

Pi

by Piengine

Source repositories

CVEs (3)

  • CVE-2017-7251MedMar 23, 2017
    risk 0.33cvss 6.1epss 0.01

    A Cross-Site Scripting (XSS) was discovered in pi-engine/pi 2.5.0. The vulnerability exists due to insufficient filtration of user-supplied data (preview) passed to the "pi-develop/www/script/editor/markitup/preview/markdown.php" URL. An attacker could execute arbitrary HTML and…

  • CVE-2022-20657Nov 15, 2024
    risk 0.00cvss epss 0.01

    A vulnerability in the web-based management interface of Cisco PI and Cisco EPNM could allow an unauthenticated, remote attacker to conduct an XSS attack against a user of the interface of an affected device. This vulnerability exists because the web-based management…

  • CVE-2022-20656Nov 15, 2024
    risk 0.00cvss epss 0.02

    A vulnerability in the web-based management interface of Cisco PI and Cisco EPNM could allow an authenticated, remote attacker to conduct a path traversal attack on an affected device. To exploit this vulnerability, the attacker must have valid credentials on the…