Vulnerabilities > Promise

DATE CVE VULNERABILITY TITLE RISK
2018-02-07 CVE-2018-6603 Injection vulnerability in Promise Webpam Proe
Promise Technology WebPam Pro-E devices allow remote attackers to conduct XSS, HTTP Response Splitting, and CRLF Injection attacks via JavaScript code in a PHPSESSID cookie.
network
low complexity
promise CWE-74
6.1