Filtered by vendor Microfocus Subscriptions
Filtered by product Acutoweb Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2019-17087 1 Microfocus 1 Acutoweb 2024-11-21 7.5 High
Unauthorized file download vulnerability in all supported versions of Micro Focus AcuToWeb. The vulnerability could be exploited to enumerate and download files from the filesystem of the system running AcuToWeb, with the privileges of the account AcuToWeb is running under.
CVE-2024-42852 1 Microfocus 1 Acutoweb 2024-08-23 6.1 Medium
Cross Site Scripting vulnerability in AcuToWeb server v.10.5.0.7577C8b allows a remote attacker to execute arbitrary code via the index.php component.