VYPR

Buildmaster

by Inedo

CVEs (4)

  • CVE-2017-16521CriNov 10, 2017
    risk 0.64cvss 9.8epss 0.02

    In Inedo BuildMaster before 5.8.2, XslTransform was used where XslCompiledTransform should have been used.

  • CVE-2017-16520HigNov 11, 2017
    risk 0.49cvss 7.5epss 0.01

    Inedo BuildMaster before 5.8.2 does not properly restrict creation of RequireManageAllPrivileges event listeners.

  • CVE-2017-16761MedNov 10, 2017
    risk 0.40cvss 6.1epss 0.01

    An Open Redirect vulnerability in Inedo BuildMaster before 5.8.2 allows remote attackers to redirect users to arbitrary web sites.

  • CVE-2017-16760MedNov 10, 2017
    risk 0.40cvss 6.1epss 0.01

    Inedo BuildMaster before 5.8.2 has XSS.