Vendor
Nifty
Products
2
CVEs
2
Across products
2
Status
Private
Products
2- 1 CVE
- 1 CVE
Recent CVEs
2| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2020-26049 | 0.00 | — | 0.01 | Dec 21, 2020 | Nifty-PM CPE 2.3 is affected by stored HTML injection. The impact is remote arbitrary code execution. | |||
| CVE-2020-25071 | 0.00 | — | 0.01 | Sep 15, 2020 | Nifty Project Management Web Application 2020-08-26 allows XSS, via Add Task, that is rendered upon a Project Home visit. Note: It has been argued that this is not reproducible. "The original issue was that the task would be created and an alert would be shown on the screen. Now… |
- CVE-2020-26049Dec 21, 2020risk 0.00cvss —epss 0.01
Nifty-PM CPE 2.3 is affected by stored HTML injection. The impact is remote arbitrary code execution.
- CVE-2020-25071Sep 15, 2020risk 0.00cvss —epss 0.01
Nifty Project Management Web Application 2020-08-26 allows XSS, via Add Task, that is rendered upon a Project Home visit. Note: It has been argued that this is not reproducible. "The original issue was that the task would be created and an alert would be shown on the screen. Now…