RSS   Vulnerabilities for 'Smartertrack'   RSS

2022-03-14
 
CVE-2022-24384

CWE-79
 

 
Cross-site Scripting (XSS) vulnerability in SmarterTools SmarterTrack This issue affects: SmarterTools SmarterTrack 100.0.8019.14010.

 
 
CVE-2022-24385

CWE-425
 

 
A Direct Object Access vulnerability in SmarterTools SmarterTrack leads to information disclosure This issue affects: SmarterTools SmarterTrack 100.0.8019.14010.

 
 
CVE-2022-24386

CWE-79
 

 
Stored XSS in SmarterTools SmarterTrack This issue affects: SmarterTools SmarterTrack 100.0.8019.14010.

 
 
CVE-2022-24387

CWE-434
 

 
With administrator or admin privileges the application can be tricked into overwriting files in app_data/Config folder, e.g. the systemsettings.xml file. THis is possible in SmarterTrack v100.0.8019.14010

 
2010-08-25
 
CVE-2009-4995

CWE-79
 

 
Cross-site scripting (XSS) vulnerability in frmTickets.aspx in SmarterTools SmarterTrack before 4.0.3504 allows remote attackers to inject arbitrary web script or HTML via the email address field. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

 
 
CVE-2009-4994

CWE-79
 

 
Cross-site scripting (XSS) vulnerability in frmKBSearch.aspx in SmarterTools SmarterTrack before 4.0.3504 allows remote attackers to inject arbitrary web script or HTML via the search parameter.

 

 >>> Vendor: Smartertools 4 Products
Smartermail
Smartermail enterprise
Smartertrack
Smarterstats


Copyright 2024, cxsecurity.com

 

Back to Top