VYPR
Vendor

Topmanage

Products
3
CVEs
3
Across products
3
Status
Private

Products

3

Recent CVEs

3
  • CVE-2020-6844HigFeb 18, 2020
    risk 0.57cvss 8.8epss 0.01

    In TopManage OLK 2020, login CSRF can be chained with another vulnerability in order to takeover admin and user accounts.

  • CVE-2020-6845MedFeb 18, 2020
    risk 0.40cvss 6.1epss 0.01

    An issue was discovered in TopManage OLK 2020. As there is no ReadOnly on the Session cookie, the user and admin accounts can be taken over in a DOM-Based XSS attack.

  • CVE-2010-2686Jul 12, 2010
    risk 0.00cvss epss 0.01

    Multiple SQL injection vulnerabilities in clientes.asp in the TopManage OLK module 1.91.30 for SAP allow remote attackers to execute arbitrary SQL commands via the (1) PriceFrom, (2) PriceTo, and (3) InvFrom parameters, as reachable from olk/c_p/searchCart.asp, and other…