Vulnerabilities > Avolvesoftware
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2018-03-27 | CVE-2014-5132 | Information Exposure vulnerability in Avolvesoftware Projectdox 8.1 Avolve Software ProjectDox 8.1 allows remote attackers to enumerate users via vectors related to email addresses. | 4.0 |
2018-03-27 | CVE-2014-5131 | Information Exposure vulnerability in Avolvesoftware Projectdox 8.1 Avolve Software ProjectDox 8.1 makes it easier for remote authenticated users to obtain sensitive information by leveraging ciphertext reuse. | 4.0 |
2018-03-27 | CVE-2014-5130 | Information Exposure vulnerability in Avolvesoftware Projectdox 8.1 Avolve Software ProjectDox 8.1 allows remote authenticated users to obtain sensitive information from other users via vectors involving a direct access token. | 4.0 |
2014-09-11 | CVE-2014-5129 | Cross-Site Scripting vulnerability in Avolvesoftware Projectdox 8.1 Cross-site scripting (XSS) vulnerability in Avolve Software ProjectDox 8.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | 4.3 |