Vulnerabilities > Grupposcai > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-08-31 | CVE-2023-41638 | Unrestricted Upload of File with Dangerous Type vulnerability in Grupposcai Realgimm 1.1.37 An arbitrary file upload vulnerability in the Gestione Documentale module of GruppoSCAI RealGimm 1.1.37p38 allows attackers to execute arbitrary code via uploading a crafted file. | 8.8 |
| 2023-08-31 | CVE-2023-41640 | SQL Injection vulnerability in Grupposcai Realgimm 1.1.37 An improper error handling vulnerability in the component ErroreNonGestito.aspx of GruppoSCAI RealGimm 1.1.37p38 allows attackers to obtain sensitive technical information via a crafted SQL query. | 8.8 |