Vulnerabilities > RED Gate > SQL Monitor > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-04-04 | CVE-2022-47870 | Cross-site Scripting vulnerability in Red-Gate SQL Monitor 12.1.31.893 A Cross Site Scripting (XSS) vulnerability in the web SQL monitor login page in Redgate SQL Monitor 12.1.31.893 allows remote attackers to inject arbitrary web Script or HTML via the returnUrl parameter. | 6.1 |
| 2020-07-09 | CVE-2020-15526 | Improper Certificate Validation vulnerability in Red-Gate SQL Monitor In Redgate SQL Monitor 7.1.4 through 10.1.6 (inclusive), the scope for disabling some TLS security certificate checks can extend beyond that defined by various options on the Configuration > Notifications pages to disable certificate checking for alert notifications. | 5.9 |