VYPR
Vendor

Mayan Edms

Products
1
CVEs
4
Across products
4
Status
Private

Products

1

Recent CVEs

4
  • CVE-2025-14692MedDec 15, 2025
    risk 0.21cvss 4.3epss 0.00

    A flaw has been found in Mayan EDMS up to 4.10.1. The impacted element is an unknown function of the file /authentication/. This manipulation causes open redirect. It is possible to initiate the attack remotely. The exploit has been published and may be used. Upgrading to…

  • CVE-2025-14691MedDec 14, 2025
    risk 0.21cvss 4.3epss 0.00

    A vulnerability was detected in Mayan EDMS up to 4.10.1. The affected element is an unknown function of the file /authentication/. The manipulation results in cross site scripting. The attack may be performed from remote. The exploit is now public and may be used. Upgrading to…

  • CVE-2022-47419Feb 7, 2023
    risk 0.00cvss epss 0.01

    An XSS vulnerability was discovered in the Mayan EDMS DMS. Successful XSS exploitation was observed in the in-product tagging system.

  • CVE-2014-3840May 27, 2014
    risk 0.00cvss epss 0.03

    Multiple cross-site scripting (XSS) vulnerabilities in apps/common/templates/calculate_form_title.html in Mayan EDMS 0.13 allow remote authenticated users to inject arbitrary web script or HTML via a (1) tag or the (2) title of a source in a Staging folder, (3) Name field in a…