Vulnerabilities > Lansweeper > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-12-15 | CVE-2022-27498 | Unspecified vulnerability in Lansweeper 10.1.1.0 A directory traversal vulnerability exists in the TicketTemplateActions.aspx GetTemplateAttachment functionality of Lansweeper lansweeper 10.1.1.0. | 6.5 |
| 2022-12-15 | CVE-2022-28703 | Cross-site Scripting vulnerability in Lansweeper 10.1.1.0 A stored cross-site scripting vulnerability exists in the HdConfigActions.aspx altertextlanguages functionality of Lansweeper lansweeper 10.1.1.0. | 5.4 |
| 2022-12-15 | CVE-2022-29511 | Unspecified vulnerability in Lansweeper 10.1.1.0 A directory traversal vulnerability exists in the KnowledgebasePageActions.aspx ImportArticles functionality of Lansweeper lansweeper 10.1.1.0. | 6.5 |
| 2022-12-15 | CVE-2022-32763 | Cross-site Scripting vulnerability in Lansweeper 10.1.1.0 A cross-site scripting (xss) sanitization vulnerability bypass exists in the SanitizeHtml functionality of Lansweeper lansweeper 10.1.1.0. | 6.1 |
| 2022-04-14 | CVE-2022-21145 | Cross-site Scripting vulnerability in Lansweeper 9.1.20.2 A stored cross-site scripting vulnerability exists in the WebUserActions.aspx functionality of Lansweeper lansweeper 9.1.20.2. | 4.8 |
| 2019-12-19 | CVE-2019-18955 | Cross-site Scripting vulnerability in Lansweeper 7.2.105.2 The web console in Lansweeper 7.2.105.2 has XSS via the URL path. | 6.1 |
| 2017-11-16 | CVE-2017-16841 | Cross-site Scripting vulnerability in Lansweeper LanSweeper 6.0.100.75 has XSS via the description parameter to /Calendar/CalendarActions.aspx. | 6.1 |
| 2017-05-29 | CVE-2017-9292 | Cross-site Scripting vulnerability in Lansweeper Lansweeper before 6.0.0.65 has XSS in an image retrieval URI, aka Bug 542782. | 6.1 |