Filtered by vendor Fl3xx Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2023-42334 1 Fl3xx 2 Crew, Dispatch 2024-09-25 6.5 Medium
An Indirect Object Reference (IDOR) in Fl3xx Dispatch 2.10.37 and fl3xx Crew 2.10.37 allows a remote attacker to escalate privileges via the user parameter.
CVE-2023-42335 1 Fl3xx 2 Crew, Dispatch 2024-09-25 8.8 High
Unrestricted File Upload vulnerability in Fl3xx Dispatch 2.10.37 and fl3xx Crew 2.10.37 allows a remote attacker to execute arbitrary code via the add attachment function in the New Expense component.