Vulnerabilities > I Doit
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2019-07-18 | CVE-2019-1010248 | SQL Injection vulnerability in I-Doit Synetics GmbH I-doit 1.12 and earlier is affected by: SQL Injection. | 9.8 |
2019-06-18 | CVE-2019-6965 | Cross-site Scripting vulnerability in I-Doit 1.12 An XSS issue was discovered in i-doit Open 1.12 via the src/tools/php/qr/qr.php url parameter. | 6.1 |
2018-12-15 | CVE-2018-20159 | Improper Input Validation vulnerability in I-Doit 1.11.2 i-doit open 1.11.2 allows Remote Code Execution because ZIP archives are mishandled. | 7.2 |