VYPR
Vendor

Netcommons

Products
2
CVEs
4
Across products
5
Status
Private

Products

2

Recent CVEs

4
  • CVE-2016-4813HigJun 19, 2016
    risk 0.57cvss 8.8epss 0.02

    NetCommons 2.4.2.1 and earlier allows remote authenticated secretariat (aka CLERK) users to gain privileges by creating a SYSTEM_ADMIN account.

  • CVE-2019-6018Dec 26, 2019
    risk 0.00cvss epss 0.01

    Cross-site scripting vulnerability in NetCommons 3.2.2 and earlier (NetCommons3.x) allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

  • CVE-2007-5950Nov 14, 2007
    risk 0.00cvss epss 0.01

    Cross-site scripting (XSS) vulnerability in NetCommons before 1.0.11, and 1.1.x before 1.1.2, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2006-4165.

  • CVE-2006-4165Aug 16, 2006
    risk 0.00cvss epss 0.01

    Cross-site scripting (XSS) vulnerability in NetCommons 1.0.8 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.