Vulnerabilities > Liveconfig

DATE	CVE	VULNERABILITY TITLE	RISK
2024-02-02	CVE-2024-22851	Path Traversal vulnerability in Liveconfig Directory Traversal Vulnerability in LiveConfig before v.2.5.2 allows a remote attacker to obtain sensitive information via a crafted request to the /static/ endpoint. network low complexity liveconfig CWE-22	7.5
2022-02-18	CVE-2021-40840	Cross-site Scripting vulnerability in Liveconfig 2.12.2 A Stored XSS issue exists in the admin/users user administration form in LiveConfig 2.12.2. network low complexity liveconfig CWE-79	5.4
2022-02-18	CVE-2021-40841	Path Traversal vulnerability in Liveconfig A Path Traversal vulnerability for a log file in LiveConfig 2.12.2 allows authenticated attackers to read files on the underlying server. network low complexity liveconfig CWE-22	6.5

Vulnerabilities > Liveconfig {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Liveconfig"}]}