Lucene search

Thinkingreed Inc. Security Vulnerabilities

cve

CVE-2023-47609

SQL injection vulnerability in OSS Calendar versions prior to v.2.0.3 allows a remote authenticated attacker to execute arbitrary code or obtain and/or alter the information stored in the database by sending a specially crafted...

8.8CVSS

8.6AI Score

0.001EPSS

2023-11-14 06:15 AM

cve

CVE-2023-41149

F-RevoCRM version7.3.7 and version7.3.8 contains an OS command injection vulnerability. If this vulnerability is exploited, an attacker who can access the product may execute an arbitrary OS command on the server where the product is...

9.8CVSS

9.7AI Score

0.001EPSS

2023-09-06 01:15 PM

cve

CVE-2023-41150

F-RevoCRM 7.3 series prior to version7.3.8 contains a cross-site scripting vulnerability. If this vulnerability is exploited, an arbitrary script may be executed on the web browser of the user who is using the...

5.4CVSS

5.3AI Score

0.0004EPSS

2023-09-06 01:15 PM

cve

CVE-2019-6036

Cross-site scripting vulnerability in F-RevoCRM 6.0 to F-RevoCRM 6.5 patch6 (version 6 series) allows remote attackers to inject arbitrary web script or HTML via unspecified...

6.1CVSS

6.1AI Score

0.001EPSS

2020-01-27 10:15 AM