RSS   Vulnerabilities for 'Pacsone server'   RSS

2020-09-30
 
CVE-2020-12870

CWE-89
 

 
RainbowFish PacsOne Server 6.8.4 allows SQL injection on the username parameter in the signup page.

 
 
CVE-2020-12869

CWE-79
 

 
RainbowFish PacsOne Server 6.8.4 allows XSS.

 
 
CVE-2020-12715

CWE-434
 

 
RainbowFish PacsOne Server 6.8.4 has Incorrect Access Control.

 


Copyright 2020, cxsecurity.com

 

Back to Top