Vulnerabilities > Corebos > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-06-02 | CVE-2023-3073 | Unspecified vulnerability in Corebos 5.4/5.5/7.0 Cross-site Scripting (XSS) - Stored in GitHub repository tsolucio/corebos prior to 8 via evvtgendoc. | 5.4 |
| 2023-06-02 | CVE-2023-3074 | Unspecified vulnerability in Corebos 5.4/5.5/7.0 Cross-site Scripting (XSS) - Stored in GitHub repository tsolucio/corebos prior to 8. | 5.4 |
| 2023-06-02 | CVE-2023-3075 | Unspecified vulnerability in Corebos 5.4/5.5/7.0 Cross-Site Request Forgery (CSRF) in GitHub repository tsolucio/corebos prior to 8. | 6.5 |
| 2023-06-02 | CVE-2023-3070 | Unspecified vulnerability in Corebos 5.4/5.5/7.0 Cross-site Scripting (XSS) - Stored in GitHub repository tsolucio/corebos prior to 8. | 5.4 |
| 2023-03-21 | CVE-2023-1527 | Unspecified vulnerability in Corebos 5.4/5.5/7.0 Cross-site Scripting (XSS) - Generic in GitHub repository tsolucio/corebos prior to 8.0. | 5.4 |
| 2018-06-26 | CVE-2018-1000547 | Incorrect Permission Assignment for Critical Resource vulnerability in Corebos 5.4/5.5/7.0 coreBOS version 7.0 and earlier contains a Incorrect Access Control vulnerability in Module: Contacts that can result in The error allows you to access records that you have no permissions to. | 5.3 |