Filtered by vendor Vembu Subscriptions
Filtered by product Storegrid Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2014-10079 1 Vembu 1 Storegrid 2024-11-21 N/A
In Vembu StoreGrid 4.4.x, the front page of the server web interface leaks the private IP address in the "ipaddress" hidden form value of the HTML source code, which is disclosed because of incorrect processing of an index.php/ trailing slash.
CVE-2014-10078 1 Vembu 1 Storegrid 2024-11-21 N/A
Vembu StoreGrid 4.4.x has XSS in interface/registercustomer/onlineregsuccess.php, interface/registerreseller/onlineregfailure.php, interface/registerclient/onlineregfailure.php, and interface/registercustomer/onlineregfailure.php.