Filtered by vendor Snapt Subscriptions
Filtered by product Aria Subscriptions
Total 3 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2022-24237 1 Snapt 1 Aria 2024-11-21 8.8 High
The snaptPowered2 component of Snapt Aria v12.8 was discovered to contain a command injection vulnerability. This vulnerability allows authenticated attackers to execute arbitrary commands.
CVE-2022-24236 1 Snapt 1 Aria 2024-11-21 3.5 Low
An insecure permissions vulnerability in Snapt Aria v12.8 allows unauthenticated attackers to send e-mails from spoofed users' accounts.
CVE-2022-24235 1 Snapt 1 Aria 2024-11-21 8.8 High
A Cross-Site Request Forgery (CSRF) in the management portal of Snapt Aria v12.8 allows attackers to escalate privileges and execute arbitrary code via unspecified vectors.