Vulnerabilities > Gruparge
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-02-12 | CVE-2022-45086 | Cross-site Scripting vulnerability in Gruparge Smartpower web Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Group Arge Energy and Control Systems Smartpower Web allows Cross-Site Scripting (XSS). This issue affects Smartpower Web: before 23.01.01. | 5.4 |
| 2023-02-12 | CVE-2022-45087 | Cross-site Scripting vulnerability in Gruparge Smartpower web Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Group Arge Energy and Control Systems Smartpower Web allows Cross-Site Scripting (XSS). This issue affects Smartpower Web: before 23.01.01. | 6.1 |
| 2023-02-12 | CVE-2022-45088 | Improper Input Validation vulnerability in Gruparge Smartpower web Improper Input Validation vulnerability in Group Arge Energy and Control Systems Smartpower Web allows PHP Local File Inclusion.This issue affects Smartpower Web: before 23.01.01. | 9.8 |
| 2023-02-12 | CVE-2022-45089 | SQL Injection vulnerability in Gruparge Smartpower web Improper Input Validation vulnerability in Group Arge Energy and Control Systems Smartpower Web allows SQL Injection.This issue affects Smartpower Web: before 23.01.01. | 8.8 |
| 2023-02-12 | CVE-2022-45090 | SQL Injection vulnerability in Gruparge Smartpower web Improper Input Validation vulnerability in Group Arge Energy and Control Systems Smartpower Web allows SQL Injection.This issue affects Smartpower Web: before 23.01.01. | 8.8 |
| 2023-02-12 | CVE-2022-45091 | Cross-site Scripting vulnerability in Gruparge Smartpower web Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Group Arge Energy and Control Systems Smartpower Web allows Cross-Site Scripting (XSS).This issue affects Smartpower Web: before 23.01.01. | 5.4 |