Filtered by vendor Cyclos
Subscriptions
Total
2 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2021-31674 | 1 Cyclos | 1 Cyclos | 2024-11-21 | 6.1 Medium |
| Cyclos 4 PRO 4.14.7 and before does not validate user input at error inform, which allows remote unauthenticated attacker to execute javascript code via undefine enum constant. | ||||
| CVE-2021-31673 | 1 Cyclos | 1 Cyclos | 2024-11-21 | 6.1 Medium |
| A Dom-based Cross-site scripting (XSS) vulnerability at registration account in Cyclos 4 PRO.14.7 and before allows remote attackers to inject arbitrary web script or HTML via the groupId parameter. | ||||
Page 1 of 1.