RSS   Vulnerabilities for 'Projectdox'   RSS

2018-03-27
 
CVE-2014-5132

CWE-200
 

 
Avolve Software ProjectDox 8.1 allows remote attackers to enumerate users via vectors related to email addresses.

 
 
CVE-2014-5131

CWE-200
 

 
Avolve Software ProjectDox 8.1 makes it easier for remote authenticated users to obtain sensitive information by leveraging ciphertext reuse.

 
 
CVE-2014-5130

CWE-200
 

 
Avolve Software ProjectDox 8.1 allows remote authenticated users to obtain sensitive information from other users via vectors involving a direct access token.

 
2014-09-11
 
CVE-2014-5129

CWE-79
 

 
Cross-site scripting (XSS) vulnerability in Avolve Software ProjectDox 8.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

 


Copyright 2024, cxsecurity.com

 

Back to Top