Vulnerabilities > PTC > Thingworx Platform > 7.1.7

DATE CVE VULNERABILITY TITLE RISK
2018-12-17 CVE-2018-20092 Path Traversal vulnerability in PTC Thingworx Platform
PTC ThingWorx Platform through 8.3.0 is vulnerable to a directory traversal attack on ZIP files via a POST request.
network
low complexity
ptc CWE-22
5.0
5.0
2018-10-01 CVE-2018-17218 Cross-site Scripting vulnerability in PTC Thingworx Platform
An issue was discovered in PTC ThingWorx Platform 6.5 through 8.2.
network
ptc CWE-79
3.5
3.5
2018-10-01 CVE-2018-17217 Use of Hard-coded Credentials vulnerability in PTC Thingworx Platform
An issue was discovered in PTC ThingWorx Platform 6.5 through 8.2.
network
low complexity
ptc CWE-798
5.0
5.0
2018-10-01 CVE-2018-17216 Information Exposure vulnerability in PTC Thingworx Platform
An issue was discovered in PTC ThingWorx Platform 6.5 through 8.2.
network
low complexity
ptc CWE-200
4.0
4.0