Vulnerabilities > Hyland > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-07-20 | CVE-2024-40347 | Cross-site Scripting vulnerability in Hyland Alfresco Content Services 7.2.0 A reflected cross-site scripting (XSS) vulnerability in Hyland Alfresco Platform 23.2.1-r96 allows attackers to execute arbitrary code in the context of a user's browser via injecting a crafted payload into the parameter htmlid. | 6.1 |
| 2023-01-05 | CVE-2021-32828 | Cross-site Scripting vulnerability in Hyland Nuxeo The Nuxeo Platform is an open source content management platform for building business applications. | 6.1 |
| 2022-06-21 | CVE-2022-23342 | Unspecified vulnerability in Hyland Onbase The Hyland Onbase Application Server releases prior to 20.3.58.1000 and OnBase releases 21.1.1.1000 through 21.1.15.1000 are vulnerable to a username enumeration vulnerability. | 5.3 |
| 2020-09-11 | CVE-2020-25249 | Unspecified vulnerability in Hyland Onbase An issue was discovered in Hyland OnBase 16.0.2.83 and below, 17.0.2.109 and below, 18.0.0.37 and below, 19.8.16.1000 and below and 20.3.10.1000 and below. | 5.3 |