Sysaid - Sysaid On-premises CVE - OpenCVE

Filtered by vendor Sysaid Subscriptions

Filtered by product Sysaid On-premises Subscriptions

Total 3 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2020-13168	1 Sysaid	2 Sysaid On-premises, Sysaidsy On-premises	2024-08-04	6.1 Medium
SysAid 20.1.11b26 allows reflected XSS via the ForgotPassword.jsp accountid parameter.
CVE-2023-32226	1 Sysaid	1 Sysaid On-premises	2024-08-02	8.3 High
Sysaid - CWE-552: Files or Directories Accessible to External Parties - Authenticated users may exfiltrate files from the server via an unspecified method.
CVE-2023-32225	1 Sysaid	1 Sysaid On-premises	2024-08-02	9.8 Critical
Sysaid - CWE-434: Unrestricted Upload of File with Dangerous Type - A malicious user with administrative privileges may be able to upload a dangerous filetype via an unspecified method.

Page 1 of 1.