Vulnerabilities > Jenzabar > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-02-06 | CVE-2021-26723 | Cross-site Scripting vulnerability in Jenzabar 9.2.0/9.2.1/9.2.2 Jenzabar 9.2.x through 9.2.2 allows /ics?tool=search&query= XSS. | 6.1 |
| 2018-12-21 | CVE-2018-16778 | Cross-site Scripting vulnerability in Jenzabar 8.2.1/9.2.0 Cross-site scripting (XSS) vulnerability in Jenzabar v8.2.1 through 9.2.0 allows remote attackers to inject arbitrary web script or HTML via the query parameter (aka the Search Field). | 6.1 |