Eramba: >> Eramba >> e1.0.6.033 Security Vulnerabilities
Eramba e1.0.6.033 has Stored XSS on the tooltip box via the /programScopes description parameter.
CVSS Score
6.1
EPSS Score
0.002
Published
2018-03-09
Eramba e1.0.6.033 has Reflected XSS on the Error page of the CSV file inclusion tab of the /importTool/preview URI, with a CSV file polluted with malicious JavaScript.
CVSS Score
6.1
EPSS Score
0.002
Published
2018-03-09
Eramba e1.0.6.033 has Reflected XSS in reviews/filterIndex/ThirdPartyRiskReview via the advanced_filter parameter (aka the Search Parameter).
CVSS Score
6.1
EPSS Score
0.002
Published
2018-03-09
Eramba e1.0.6.033 has Reflected XSS in the Date Filter via the created parameter to the /crons URI.
CVSS Score
6.1
EPSS Score
0.002
Published
2018-03-07