Filtered by vendor Steelcase Subscriptions
Filtered by product Roomwizard Subscriptions
Total 3 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2018-7057 1 Steelcase 2 Roomwizard, Roomwizard Firmware 2024-11-21 N/A
RoomWizard before 4.4.x allows XSS via the HelpAction.action pageName parameter.
CVE-2018-7056 1 Steelcase 2 Roomwizard, Roomwizard Firmware 2024-11-21 N/A
RoomWizard before 4.4.x allows remote attackers to obtain potentially sensitive information about IP addresses via /getGroupTimeLineJSON.action.
CVE-2018-7055 1 Steelcase 2 Roomwizard, Roomwizard Firmware 2024-11-21 N/A
GroupViewProxyServlet in RoomWizard before 4.4.x allows SSRF via the url parameter.