Filtered by vendor Softwarepublico Subscriptions
Filtered by product I3geo Subscriptions
Total 4 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2022-34094 1 Softwarepublico 1 I3geo 2024-11-21 6.1 Medium
Portal do Software Publico Brasileiro i3geo v7.0.5 was discovered to contain a cross-site scripting (XSS) vulnerability via request_token.php.
CVE-2022-34093 1 Softwarepublico 1 I3geo 2024-11-21 6.1 Medium
Portal do Software Publico Brasileiro i3geo v7.0.5 was discovered to contain a cross-site scripting (XSS) vulnerability via access_token.php.
CVE-2022-34092 1 Softwarepublico 1 I3geo 2024-11-21 6.1 Medium
Portal do Software Publico Brasileiro i3geo v7.0.5 was discovered to contain a cross-site scripting (XSS) vulnerability via svg2img.php.
CVE-2022-32409 1 Softwarepublico 1 I3geo 2024-11-21 9.8 Critical
A local file inclusion (LFI) vulnerability in the component codemirror.php of Portal do Software Publico Brasileiro i3geo v7.0.5 allows attackers to execute arbitrary PHP code via a crafted HTTP request.