Vulnerabilities > Outsystems > Outsystems > 10.0.1019.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-04-12 | CVE-2021-29357 | Server-Side Request Forgery (SSRF) vulnerability in Outsystems products The ECT Provider component in OutSystems Platform Server 10 before 10.0.1104.0 and 11 before 11.9.0 (and LifeTime management console before 11.7.0) allows SSRF for arbitrary outbound HTTP requests. | 8.6 |
| 2019-12-31 | CVE-2019-12273 | Cross-Site Request Forgery (CSRF) vulnerability in Outsystems OutSystems Platform 10 through 11 allows ImageResourceDetail.aspx CSRF for content modifications and file uploads. | 6.5 |