Filtered by vendor Metaways
Subscriptions
Filtered by product Tine
Subscriptions
Total
2 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2023-41364 | 1 Metaways | 1 Tine | 2024-09-30 | 9.8 Critical |
| In tine through 2023.01.14.325, the sort parameter of the /index.php endpoint allows SQL Injection. | ||||
| CVE-2011-1666 | 1 Metaways | 1 Tine | 2024-08-06 | N/A |
| Metaways Tine 2.0 allows remote attackers to obtain sensitive information via unknown vectors in (1) Crm/Controller.php, (2) Crm/Export/Csv.php, or (3) Calendar/Model/Attender.php, which reveal the full installation path. | ||||
Page 1 of 1.