Vulnerabilities > I Doit

DATE CVE VULNERABILITY TITLE RISK
2019-07-18 CVE-2019-1010248 SQL Injection vulnerability in I-Doit
Synetics GmbH I-doit 1.12 and earlier is affected by: SQL Injection.
network
low complexity
i-doit CWE-89
critical
9.8
2019-06-18 CVE-2019-6965 Cross-site Scripting vulnerability in I-Doit 1.12
An XSS issue was discovered in i-doit Open 1.12 via the src/tools/php/qr/qr.php url parameter.
network
low complexity
i-doit CWE-79
6.1
2018-12-15 CVE-2018-20159 Improper Input Validation vulnerability in I-Doit 1.11.2
i-doit open 1.11.2 allows Remote Code Execution because ZIP archives are mishandled.
network
low complexity
i-doit CWE-20
7.2