Opencrx: >> Opencrx >> 5.2.0 Security Vulnerabilities
openCRX 5.2.0 was discovered to contain an HTML injection vulnerability for Search Criteria-Activity Number (in the Saved Search Activity) via the Name, Description, or Activity Number field.
CVSS Score
6.1
EPSS Score
0.004
Published
2024-02-29
openCRX 5.2.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the Name field after creation of a Tracker in Manage Activity.
CVSS Score
5.4
EPSS Score
0.001
Published
2023-12-26
OpenCRX version 5.2.0 is vulnerable to HTML injection via the Activity Search Criteria-Activity Number.
CVSS Score
6.1
EPSS Score
0.001
Published
2023-11-18
OpenCRX version 5.2.0 is vulnerable to HTML injection via Product Name Field.
CVSS Score
6.1
EPSS Score
0.001
Published
2023-11-18
OpenCRX version 5.2.0 is vulnerable to HTML injection via the Accounts Group Name Field.
CVSS Score
6.1
EPSS Score
0.001
Published
2023-11-18
OpenCRX version 5.2.0 is vulnerable to HTML injection via Activity Saved Search Creation.
CVSS Score
6.1
EPSS Score
0.001
Published
2023-11-18
OpenCRX version 5.2.0 is vulnerable to HTML injection via the Accounts Name Field.
CVSS Score
6.1
EPSS Score
0.001
Published
2023-11-18
OpenCRX version 5.2.0 is vulnerable to HTML injection via the Category Creation Name Field.
CVSS Score
6.1
EPSS Score
0.001
Published
2023-11-18
OpenCRX version 5.2.0 is vulnerable to HTML injection via Activity Milestone Name Field.
CVSS Score
6.1
EPSS Score
0.001
Published
2023-11-18
OpenCRX version 5.2.0 is vulnerable to HTML injection via the Product Configuration Name Field.
CVSS Score
6.1
EPSS Score
0.001
Published
2023-11-18
Page 1