CVEDB API - Fast Vulnerability Dashboard

Vulnerabilities

Vulnerable Software

Mecodia: Security Vulnerabilities

CVE-2024-41519

Feripro <= v2.2.3 is vulnerable to Cross Site Scripting (XSS) via "/admin/programm/<program_id>/zuordnung/veranstaltungen/<event_id>" through the "school" input field.

CVSS Score

5.4

EPSS Score

0.001

Published

2024-08-02

CVE-2024-41517

An Incorrect Access Control vulnerability in "/admin/benutzer/institution/rechteverwaltung/uebersicht" in Feripro <= v2.2.3 allows remote attackers to get a list of all users and their corresponding privileges.

CVSS Score

5.3

EPSS Score

0.002

Published

2024-08-02

CVE-2024-41518

An Incorrect Access Control vulnerability in "/admin/programm/<program_id>/export/statistics" in Feripro <= v2.2.3 allows remote attackers to export an XLSX file with information about registrations and participants.

CVSS Score

7.5

EPSS Score

0.002

Published

2024-08-02

Page 1

Products

Pricing

Contact Us

support@shodan.io

Shodan ® - All rights reserved