VYPR

Internet Management Software

by Synnefoims

CVEs (2)

  • CVE-2023-37777CriJan 22, 2025
    risk 0.64cvss 9.8epss 0.00

    A SQL injection vulnerability exists in Synnefo Internet Management Software (IMS) version 2023 and earlier. This vulnerability occurs due to improper input validation in a specific API endpoint parameter allowing an attacker to manipulate SQL queries via crafted input.…

  • CVE-2015-8247Dec 15, 2015
    risk 0.00cvss epss 0.02

    Cross-site scripting (XSS) vulnerability in synnefoclient in Synnefo Internet Management Software (IMS) 2015 allows remote attackers to inject arbitrary web script or HTML via the plan_name parameter to packagehistory/listusagesdata.