VYPR
Vendor

Polaris FT

Products
1
CVEs
5
Across products
5
Status
Private

Products

1

Recent CVEs

5
  • CVE-2024-55517HigJan 8, 2025
    risk 0.57cvss 8.8epss 0.01

    An issue was discovered in the Interllect Core Search in Polaris FT Intellect Core Banking 9.5. Input passed through the groupType parameter in /SCGController is mishandled before being used in SQL queries, allowing SQL injection in an authenticated session.

  • CVE-2018-14930HigApr 30, 2019
    risk 0.57cvss 8.8epss 0.01

    An issue was discovered in the Armor module in Polaris FT Intellect Core Banking 9.7.1. CSRF can occur via a /CollatWebApp/gcmsRefInsert?name=SUPP URI.

  • CVE-2018-14874HigApr 30, 2019
    risk 0.57cvss 8.8epss 0.01

    An issue was discovered in the Armor module in Polaris FT Intellect Core Banking 9.7.1. Input passed through the code parameter in three pages as collaterals/colexe3t.jsp and /references/refsuppu.jsp and /references/refbranu.jsp is mishandled before being used in SQL queries,…

  • CVE-2018-14931MedApr 30, 2019
    risk 0.40cvss 6.1epss 0.02

    An issue was discovered in the Core and Portal modules in Polaris FT Intellect Core Banking 9.7.1. An open redirect exists via a /IntellectMain.jsp?IntellectSystem= URI.

  • CVE-2018-14875MedApr 30, 2019
    risk 0.35cvss 5.4epss 0.01

    An issue was discovered in the Core and Portal modules in Polaris FT Intellect Core Banking 9.7.1. Reflected XSS exists with an authenticated session via the Customerid, formName, FrameId, or MODE parameter.