Vulnerabilities > Infoware
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2020-01-31 | CVE-2014-2843 | Cross-site Scripting vulnerability in Infoware Mapsuite Cross-site scripting (XSS) vulnerability in infoware MapSuite MapAPI 1.0.x before 1.0.36 and 1.1.x before 1.1.49 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | 4.3 |
2014-12-01 | CVE-2014-2233 | Cross-Site Request Forgery vulnerability in MapSuite MapAPI Server-side request forgery (SSRF) vulnerability in the MapAPI in Infoware MapSuite before 1.0.36 and 1.1.x before 1.1.49 allows remote attackers to trigger requests to intranet servers via unspecified vectors. | 5.0 |
2014-12-01 | CVE-2014-2232 | Pathname Traversal and Equivalence Errors vulnerability in Infoware Mapsuite Absolute path traversal vulnerability in the MapAPI in Infoware MapSuite before 1.0.36 and 1.1.x before 1.1.49 allows remote attackers to read arbitrary files via unspecified vectors. | 5.0 |