Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

Imind Server Security Vulnerabilities

cve
cve

CVE-2020-24765

InterMind iMind Server through 3.13.65 allows remote unauthenticated attackers to read the self-diagnostic archive via a direct api/rs/monitoring/rs/api/system/dump-diagnostic-info?server=127.0.0.1 request.

7.5CVSS

7.4AI Score

0.024EPSS

2020-10-20 08:15 PM
46
In Wild
cve
cve

CVE-2020-25398

CSV Injection exists in InterMind iMind Server through 3.13.65 via the csv export functionality.

8.8CVSS

8.8AI Score

0.002EPSS

2020-11-05 04:15 PM
29
cve
cve

CVE-2020-25399

Stored XSS in InterMind iMind Server through 3.13.65 allows any user to hijack another user's session by sending a malicious file in the chat.

7.8CVSS

7.1AI Score

0.001EPSS

2020-11-05 04:15 PM
24