Vulnerabilities > Appspace > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-04-14 | CVE-2021-27989 | Cross-site Scripting vulnerability in Appspace 6.2.4 Appspace 6.2.4 is vulnerable to stored cross-site scripting (XSS) in multiple parameters within /medianet/sgcontentset.aspx. | 5.4 |
| 2021-02-22 | CVE-2021-27564 | Cross-site Scripting vulnerability in Appspace 6.2.4 A stored XSS issue exists in Appspace 6.2.4. | 5.4 |
| 2020-01-07 | CVE-2020-5393 | Cross-site Scripting vulnerability in Appspace On-Prem In Appspace On-Prem through 7.1.3, an adversary can steal a session token via XSS. | 6.1 |