VYPR

Webdatorcentral

by Kabona Ab

CVEs (4)

  • CVE-2016-0872CriNov 7, 2017
    risk 0.64cvss 9.8epss 0.01

    A Plaintext Storage of a Password issue was discovered in Kabona AB WebDatorCentral (WDC) versions prior to Version 3.4.0. WDC stores password credentials in plaintext.

  • CVE-2016-8347CriFeb 13, 2017
    risk 0.64cvss 9.8epss 0.02

    An issue was discovered in Kabona AB WebDatorCentral (WDC) application prior to Version 3.4.0. WDC does not limit authentication attempts that may allow a brute force attack method.

  • CVE-2016-8356HigFeb 13, 2017
    risk 0.53cvss 8.2epss 0.01

    An issue was discovered in Kabona AB WebDatorCentral (WDC) application prior to Version 3.4.0. The web server URL inputs are not sanitized correctly, which may allow cross-site scripting vulnerabilities.

  • CVE-2016-8376MedFeb 13, 2017
    risk 0.40cvss 6.1epss 0.01

    An issue was discovered in Kabona AB WebDatorCentral (WDC) application prior to Version 3.4.0. This non-validated redirect/non-validated forward (OPEN REDIRECT) allows chaining with authenticated vulnerabilities.