Filtered by vendor Boolebox Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2020-13248 1 Boolebox 1 Boolebox 2024-11-21 5.4 Medium
BooleBox Secure File Sharing Utility before 4.2.3.0 allows stored XSS via a crafted avatar field within My Account JSON data to Account.aspx.
CVE-2020-13247 1 Boolebox 1 Boolebox 2024-11-21 7.3 High
BooleBox Secure File Sharing Utility before 4.2.3.0 allows CSV injection via a crafted user name that is mishandled during export from the activity logs in the Audit Area.