Vulnerabilities > Openvas > Openvas Manager > 2.0.3

DATE CVE VULNERABILITY TITLE RISK
2020-02-06 CVE-2011-1597 Unrestricted Upload of File with Dangerous Type vulnerability in Openvas Manager 2.0.3
OpenVAS Manager v2.0.3 allows plugin remote code execution.
network
low complexity
openvas CWE-434
6.5
6.5
2014-12-03 CVE-2014-9220 SQL Injection vulnerability in multiple products
SQL injection vulnerability in OpenVAS Manager before 4.0.6 and 5.x before 5.0.7 allows remote attackers to execute arbitrary SQL commands via the timezone parameter in a modify_schedule OMP command.
network
low complexity
fedoraproject openvas opensuse CWE-89
7.5
7.5