Vulnerabilities > Openmaint

DATE	CVE	VULNERABILITY TITLE	RISK
2021-03-15	CVE-2021-27695	Cross-site Scripting vulnerability in Openmaint 2.13.3B Multiple stored cross-site scripting (XSS) vulnerabilities in openMAINT 2.1-3.3-b allow remote attackers to inject arbitrary web script or HTML via any "Add" sections, such as Add Card Building & Floor, or others in the Name and Code Parameters. network openmaint CWE-79	4.3
2021-01-26	CVE-2020-24549	Unrestricted Upload of File with Dangerous Type vulnerability in Openmaint openMAINT before 1.1-2.4.2 allows remote authenticated users to run arbitrary JSP code on the underlying web server. network low complexity openmaint CWE-434	6.5

Vulnerabilities > Openmaint {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Openmaint"}]}