Vulnerabilities > Ispyconnect > Critical

DATE CVE VULNERABILITY TITLE RISK
2022-06-21 CVE-2022-29774 Path Traversal vulnerability in Ispyconnect Ispy 7.2.2.0
iSpy v7.2.2.0 is vulnerable to remote command execution via path traversal.
network
low complexity
ispyconnect CWE-22
critical
 9.8
9.8
2022-06-21 CVE-2022-29775 Improper Authentication vulnerability in Ispyconnect Ispy 7.2.2.0
iSpyConnect iSpy v7.2.2.0 allows attackers to bypass authentication via a crafted URL.
network
low complexity
ispyconnect CWE-287
critical
 9.8
9.8