Vulnerabilities > Outsystems > Platform Server
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-08-31 | CVE-2020-13639 | Cross-site Scripting vulnerability in Outsystems products A stored XSS vulnerability was discovered in the ECT Provider in OutSystems before 2020-09-04, affecting generated applications. | 6.1 |
| 2021-04-12 | CVE-2021-29357 | Server-Side Request Forgery (SSRF) vulnerability in Outsystems products The ECT Provider component in OutSystems Platform Server 10 before 10.0.1104.0 and 11 before 11.9.0 (and LifeTime management console before 11.7.0) allows SSRF for arbitrary outbound HTTP requests. | 8.6 |