Vulnerabilities > Bilanc

DATE CVE VULNERABILITY TITLE RISK
2020-12-23 CVE-2020-11719 Use of Hard-coded Credentials vulnerability in Bilanc 01431.01.2020
An issue was discovered in Programi Bilanc build 007 release 014 31.01.2020 and possibly below.
network
low complexity
bilanc CWE-798
7.5
7.5
2020-12-23 CVE-2020-11720 Use of Hard-coded Credentials vulnerability in Bilanc 01431.01.2020
An issue was discovered in Programi Bilanc build 007 release 014 31.01.2020 and possibly below.
network
low complexity
bilanc CWE-798
critical
 9.8
9.8
2020-12-23 CVE-2020-11718 Cleartext Transmission of Sensitive Information vulnerability in Bilanc 01431.01.2020
An issue was discovered in Programi Bilanc build 007 release 014 31.01.2020 and below.
network
high complexity
bilanc CWE-319
7.4
7.4
2020-12-21 CVE-2020-8995 Use of Hard-coded Credentials vulnerability in Bilanc 01431.01.2020
Programi Bilanc Build 007 Release 014 31.01.2020 supplies a .exe file containing several hardcoded credentials to different servers that allow remote attackers to gain access to the complete infrastructure including the website, update server, and external issue tracking tools.
network
low complexity
bilanc CWE-798
critical
 9.8
9.8
2020-12-21 CVE-2020-11717 SQL Injection vulnerability in Bilanc 01431.01.2020
An issue was discovered in Programi 014 31.01.2020.
network
low complexity
bilanc CWE-89
critical
 9.8
9.8