RSS   Podatności dla 'Smartforms'   RSS

2018-05-24
 
CVE-2018-9920

CWE-918
 

 
Server side request forgery exists in the runtime application in K2 smartforms 4.6.11 via a modified hostname in an https://*/Identity/STS/Forms/Scripts URL.

 
2015-10-21
 
CVE-2015-7299

CWE-89
 

 
SQL injection vulnerability in Runtime/Runtime/AjaxCall.ashx in K2 blackpearl, smartforms, and K2 for SharePoint 4.6.7 allows remote attackers to execute arbitrary SQL commands via the xml parameter.

 

 >>> Vendor: K2 3 Produkty
Smartforms
K2 for sharepoint
Blackpearl


Copyright 2024, cxsecurity.com

 

Back to Top