Vulnerabilities > IPA > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-07-07 | CVE-2017-2194 | Cross-site Scripting vulnerability in IPA Icodechecker Cross-site scripting vulnerability in Source code security studying tool iCodeChecker allows an attacker to inject arbitrary web script or HTML via unspecified vectors. | 6.1 |
| 2017-06-09 | CVE-2017-2180 | Information Exposure vulnerability in IPA Appgoat 3.0.0/3.0.1/3.0.2 Hands-on Vulnerability Learning Tool "AppGoat" for Web Application V3.0.2 and earlier allow remote attackers to obtain local files via unspecified vectors. | 4.3 |
| 2017-05-22 | CVE-2017-2174 | Cross-site Scripting vulnerability in IPA Empirical Project Monitor - Extended Cross-site scripting vulnerability in Empirical Project Monitor - eXtended all versions allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | 6.1 |
| 2017-05-22 | CVE-2017-2173 | Cross-site Scripting vulnerability in IPA Empirical Project Monitor - Extended Cross-site scripting vulnerability in Empirical Project Monitor - eXtended all versions allows remote authenticated attackers to inject arbitrary web script or HTML via unspecified vectors. | 5.4 |
| 2017-04-28 | CVE-2017-2100 | Improper Input Validation vulnerability in IPA Appgoat 3.0.0/3.0.1 Hands-on Vulnerability Learning Tool "AppGoat" for Web Application V3.0.1 and earlier allows remote attackers to conduct DNS rebinding attacks via unspecified vectors. | 6.3 |
| 2017-04-28 | CVE-2017-2099 | Unspecified vulnerability in IPA Appgoat 3.0.0 Hands-on Vulnerability Learning Tool "AppGoat" for Web Application V3.0.0 and earlier allows remote code execution via unspecified vectors. | 6.3 |