Vulnerabilities > SFS

DATE	CVE	VULNERABILITY TITLE	RISK
2024-09-16	CVE-2024-6401	SQL Injection vulnerability in SFS Insuree GL Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in SFS Consulting InsureE GL allows SQL Injection.This issue affects InsureE GL: before 4.6.2. network low complexity sfs CWE-89 critical	9.8
2024-09-16	CVE-2024-7098	XXE vulnerability in SFS Winsure Improper Restriction of XML External Entity Reference vulnerability in SFS Consulting ww.Winsure allows XML Injection.This issue affects ww.Winsure: before 4.6.2. network low complexity sfs CWE-611 critical	9.8
2024-09-16	CVE-2024-7104	Code Injection vulnerability in SFS Winsure Improper Control of Generation of Code ('Code Injection') vulnerability in SFS Consulting ww.Winsure allows Code Injection.This issue affects ww.Winsure: before 4.6.2. network low complexity sfs CWE-94 critical	9.8

Vulnerabilities > SFS {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"SFS"}]}