VYPR
Vendor

EmreOvunc

Products
6
CVEs
6
Across products
6
Status
Private

Products

6

Recent CVEs

6
  • CVE-2019-5893CriJan 10, 2019
    risk 0.69cvss 9.8epss 0.25

    Nelson Open Source ERP v6.3.1 allows SQL Injection via the db/utils/query/data.xml query parameter.

  • CVE-2020-19360HigJan 20, 2021
    risk 0.50cvss 7.5epss 0.20

    Local file inclusion in FHEM 6.0 allows in fhem/FileLog_logWrapper file parameter can allow an attacker to include a file, which can lead to sensitive information disclosure.

  • CVE-2019-12461MedMay 30, 2019
    risk 0.43cvss 6.1epss 0.10

    Web Port 1.19.1 allows XSS via the /log type parameter.

  • CVE-2020-25385MedJan 20, 2021
    risk 0.41cvss 6.1epss 0.16

    Nagios Log Server 2.1.7 contains a cross-site scripting (XSS) vulnerability in /nagioslogserver/configure/create_snapshot through the snapshot_name parameter, which may impact users who open a maliciously crafted link or third-party web page.

  • CVE-2020-23992MedAug 22, 2023
    risk 0.40cvss 6.1epss 0.02

    Cross Site Scripting (XSS) in Nagios XI 5.7.1 allows remote attackers to run arbitrary code via returnUrl parameter in a crafted GET request.

  • CVE-2019-12458MedMay 30, 2019
    risk 0.35cvss 5.3epss 0.02

    FileRun 2019.05.21 allows css/ext-ux Directory Listing. This issue has been fixed in FileRun 2019.06.01.