Vulnerabilities > Northgrid

DATE CVE VULNERABILITY TITLE RISK
2023-10-18 CVE-2023-45727 XXE vulnerability in Northgrid Proself
Proself Enterprise/Standard Edition Ver5.62 and earlier, Proself Gateway Edition Ver1.65 and earlier, and Proself Mail Sanitize Edition Ver1.08 and earlier allow a remote unauthenticated attacker to conduct XML External Entity (XXE) attacks.
network
low complexity
northgrid CWE-611
7.5
2023-08-18 CVE-2023-39415 Improper Authentication vulnerability in Northgrid Proself 1.07/1.62/5.61
Improper authentication vulnerability in Proself Enterprise/Standard Edition Ver5.61 and earlier, Proself Gateway Edition Ver1.62 and earlier, and Proself Mail Sanitize Edition Ver1.07 and earlier allow a remote unauthenticated attacker to log in to the product's Control Panel and perform an unintended operation.
network
low complexity
northgrid CWE-287
7.5
2023-08-18 CVE-2023-39416 OS Command Injection vulnerability in Northgrid Proself 1.07/1.62/5.61
Proself Enterprise/Standard Edition Ver5.61 and earlier, Proself Gateway Edition Ver1.62 and earlier, and Proself Mail Sanitize Edition Ver1.07 and earlier allow a remote authenticated attacker with an administrative privilege to execute arbitrary OS commands.
network
low complexity
northgrid CWE-78
7.2