Vulnerabilities > Carson Saint
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2020-08-10 | CVE-2020-16278 | Cross-site Scripting vulnerability in Carson-Saint Saint Security Suite 8.0/9.8.20 A cross-site scripting (XSS) vulnerability in the Permissions component in SAINT Security Suite 8.0 through 9.8.20 could allow arbitrary script to run in the context of a logged-in user when the user clicks on a specially crafted link. | 6.1 |
2020-08-10 | CVE-2020-16277 | SQL Injection vulnerability in Carson-Saint Saint Security Suite 8.0/9.8.20 An SQL injection vulnerability in the Analytics component of SAINT Security Suite 8.0 through 9.8.20 allows a remote, authenticated attacker to gain unauthorized access to the database. | 8.8 |
2020-08-10 | CVE-2020-16276 | SQL Injection vulnerability in Carson-Saint Saint Security Suite 8.0/9.8.20 An SQL injection vulnerability in the Assets component of SAINT Security Suite 8.0 through 9.8.20 allows a remote, authenticated attacker to gain unauthorized access to the database. | 8.8 |
2020-08-10 | CVE-2020-16275 | Cross-site Scripting vulnerability in Carson-Saint Saint Security Suite 8.0/9.8.20 A cross-site scripting (XSS) vulnerability in the Credential Manager component in SAINT Security Suite 8.0 through 9.8.20 could allow arbitrary script to run in the context of a logged-in user when the user clicks on a specially crafted link. | 6.1 |