Vulnerabilities > Aenrich

DATE	CVE	VULNERABILITY TITLE	RISK
2022-09-09	CVE-2022-28740	Unspecified vulnerability in Aenrich A+Hrd aEnrich eHRD Learning Management Key Performance Indicator System 5+ exposes Sensitive Information to an Unauthorized Actor. network low complexity aenrich	7.5
2022-09-09	CVE-2022-28741	Path Traversal vulnerability in Aenrich A+Hrd aEnrich a+HRD 5.x Learning Management Key Performance Indicator System has a local file inclusion (LFI) vulnerability that occurs due to missing input validation in v5.x network high complexity aenrich CWE-22	8.1
2022-09-09	CVE-2022-28742	Unspecified vulnerability in Aenrich A+Hrd aEnrich eHRD Learning Management Key Performance Indicator System 5+ has Improper Access Control. network low complexity aenrich	7.5
2022-04-07	CVE-2022-26675	Path Traversal vulnerability in Aenrich A+Hrd 6.8 aEnrich a+HRD has inadequate filtering for special characters in URLs. network low complexity aenrich CWE-22	7.5
2022-04-07	CVE-2022-26676	Incorrect Authorization vulnerability in Aenrich A+Hrd 6.8 aEnrich a+HRD has inadequate privilege restrictions, an unauthenticated remote attacker can use the API function to upload and execute malicious scripts to control the system or disrupt service. network low complexity aenrich CWE-863 critical	9.8

Vulnerabilities > Aenrich {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Aenrich"}]}