Vulnerabilities > Flexense > VX Search
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-05-24 | CVE-2023-49572 | Unspecified vulnerability in Flexense VX Search 10.2.14 A vulnerability has been discovered in VX Search Enterprise affecting version 10.2.14 that could allow an attacker to execute persistent XSS through /setup_odbc in odbc_data_source, odbc_user and odbc_password parameters. | 6.1 |
| 2024-05-24 | CVE-2023-49573 | Unspecified vulnerability in Flexense VX Search 10.2.14 A vulnerability has been discovered in VX Search Enterprise affecting version 10.2.14 that could allow an attacker to execute persistent XSS through /add_command_action in action_value. | 6.1 |
| 2024-05-24 | CVE-2023-49574 | Unspecified vulnerability in Flexense VX Search 10.2.14 A vulnerability has been discovered in VX Search Enterprise affecting version 10.2.14 that could allow an attacker to execute persistent XSS through /add_job in job_name. | 6.1 |
| 2024-05-24 | CVE-2023-49575 | Unspecified vulnerability in Flexense VX Search 10.2.14 A vulnerability has been discovered in VX Search Enterprise affecting version 10.2.14 that could allow an attacker to execute persistent XSS through /setup_smtp in smtp_server, smtp_user, smtp_password and smtp_email_address parameters. | 6.1 |
| 2018-05-02 | CVE-2018-10567 | Cross-site Scripting vulnerability in Flexense VX Search 10.1.12/10.1.2/10.7 XSS exists in Flexense VX Search Enterprise from v10.1.12 to v10.7. | 6.1 |
| 2018-01-10 | CVE-2017-15662 | Improperly Implemented Security Check for Standard vulnerability in Flexense VX Search 10.1.12 In Flexense VX Search Enterprise v10.1.12, the Control Protocol suffers from a denial of service vulnerability. | 7.5 |
| 2017-10-11 | CVE-2017-15220 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Flexense VX Search 10.1.12 Flexense VX Search Enterprise 10.1.12 is vulnerable to a buffer overflow via an empty POST request to a long URI beginning with a /../ substring. | 9.8 |