Filtered by vendor Hrsale Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2020-29053 1 Hrsale 1 Hrsale 2024-08-04 6.1 Medium
HRSALE 2.0.0 allows XSS via the admin/project/projects_calendar set_date parameter.
CVE-2020-27993 1 Hrsale 1 Hrsale 2024-08-04 5.3 Medium
Hrsale 2.0.0 allows download?type=files&filename=../ directory traversal to read arbitrary files.