VYPR
Vendor

openMAINT

Products
1
CVEs
2
Across products
2
Status
Private

Products

1

Recent CVEs

2
  • CVE-2020-24549HigJan 26, 2021
    risk 0.57cvss 8.8epss 0.03

    openMAINT before 1.1-2.4.2 allows remote authenticated users to run arbitrary JSP code on the underlying web server.

  • CVE-2021-27695MedMar 15, 2021
    risk 0.43cvss 6.1epss 0.03

    Multiple stored cross-site scripting (XSS) vulnerabilities in openMAINT 2.1-3.3-b allow remote attackers to inject arbitrary web script or HTML via any "Add" sections, such as Add Card Building & Floor, or others in the Name and Code Parameters.