Vulnerabilities > Opmantek > Open Audit

DATE CVE VULNERABILITY TITLE RISK
2022-01-03 CVE-2021-44674 Path Traversal vulnerability in Opmantek Open-Audit 4.2.0
An information exposure issue has been discovered in Opmantek Open-AudIT 4.2.0.
network
low complexity
opmantek CWE-22
4.0
2021-12-22 CVE-2021-40612 Unspecified vulnerability in Opmantek Open-Audit
An issue was discovered in Opmantek Open-AudIT after 3.5.0.
network
low complexity
opmantek
7.5
2021-12-20 CVE-2021-44916 Cross-site Scripting vulnerability in Opmantek Open-Audit
Opmantek Open-AudIT Community 4.2.0 (Fixed in 4.3.0) is affected by a Cross Site Scripting (XSS) vulnerability.
network
opmantek CWE-79
4.3
2021-02-05 CVE-2021-3333 Cross-site Scripting vulnerability in Opmantek Open-Audit 4.0.1
Opmantek Open-AudIT 4.0.1 is affected by cross-site scripting (XSS).
network
opmantek CWE-79
4.3
2021-01-20 CVE-2021-3130 Unspecified vulnerability in Opmantek Open-Audit
Within the Open-AudIT up to version 3.5.3 application, the web interface hides SSH secrets, Windows passwords, and SNMP strings from users using HTML 'password field' obfuscation.
network
opmantek
4.3
2020-04-29 CVE-2020-11943 Unrestricted Upload of File with Dangerous Type vulnerability in Opmantek Open-Audit 3.2.2
An issue was discovered in Open-AudIT 3.2.2.
network
low complexity
opmantek CWE-434
6.5
2020-04-29 CVE-2020-11942 SQL Injection vulnerability in Opmantek Open-Audit 3.2.2
An issue was discovered in Open-AudIT 3.2.2.
network
low complexity
opmantek CWE-89
7.5
2020-04-28 CVE-2020-12261 Cross-site Scripting vulnerability in Opmantek Open-Audit 3.3.0
Open-AudIT 3.3.0 allows an XSS attack after login.
network
opmantek CWE-79
3.5
2020-04-28 CVE-2020-12078 Injection vulnerability in Opmantek Open-Audit 3.3.1
An issue was discovered in Open-AudIT 3.3.1.
network
low complexity
opmantek CWE-74
critical
9.0
2020-04-27 CVE-2020-11941 OS Command Injection vulnerability in Opmantek Open-Audit 3.2.2
An issue was discovered in Open-AudIT 3.2.2.
network
low complexity
opmantek CWE-78
6.5