VYPR
Vendor

Aquaverde

Products
2
CVEs
3
Across products
4
Status
Private

Products

2

Recent CVEs

3
  • CVE-2019-9724HigApr 24, 2019
    risk 0.49cvss 7.5epss 0.01

    aquaverde Aquarius CMS through 4.3.5 allows Information Exposure through Log Files because of an error in the Log-File writer component.

  • CVE-2019-1010308CriJul 15, 2019
    risk 0.00cvss 9.8epss 0.02

    Aquaverde GmbH Aquarius CMS prior to version 4.1.1 is affected by: Incorrect Access Control. The impact is: The access to the log file is not restricted. It contains sensitive information like passwords etc. The component is: log file. The attack vector is: open the file.

  • CVE-2019-9734HigApr 24, 2019
    risk 0.00cvss 7.5epss 0.02

    Aquarius CMS through 4.3.5 writes POST and GET parameters (including passwords) to a log file due to an overwriting of configuration parameters under certain circumstances.