Vulnerabilities > Factorfx
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-02-11 | CVE-2021-46355 | Cross-site Scripting vulnerability in Factorfx OCS Inventory 2.9.1 OCS Inventory 2.9.1 is affected by Cross Site Scripting (XSS). | 5.4 |
| 2020-06-30 | CVE-2020-14947 | OS Command Injection vulnerability in Factorfx Open Computer Software Inventory Next Generation 2.7 OCS Inventory NG 2.7 allows Remote Command Execution via shell metacharacters to require/commandLine/CommandLine.php because mib_file in plugins/main_sections/ms_config/ms_snmp_config.php is mishandled in get_mib_oid. | 8.8 |