Vulnerabilities > GSS
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-11-03 | CVE-2023-41357 | Unrestricted Upload of File with Dangerous Type vulnerability in GSS Vitals Enterprise Social Platform 3.0.8 Galaxy Software Services Corporation Vitals ESP is an online knowledge base management portal, it has insufficient filtering and validation during file upload. | 8.8 |
| 2023-07-21 | CVE-2023-37291 | Use of Hard-coded Cryptographic Key vulnerability in GSS Vitals Enterprise Social Platform 3.0.8/6.2.0 Galaxy Software Services Vitals ESP is vulnerable to using a hard-coded encryption key. | 9.8 |