Vulnerabilities > Sibsoft
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2019-11-13 | CVE-2019-18952 | Unrestricted Upload of File with Dangerous Type vulnerability in Sibsoft Xfilesharing 2.5.1 SibSoft Xfilesharing through 2.5.1 allows cgi-bin/up.cgi arbitrary file upload. | 7.5 |
2019-11-13 | CVE-2019-18951 | Path Traversal vulnerability in Sibsoft Xfilesharing 2.5.1 SibSoft Xfilesharing through 2.5.1 allows op=page&tmpl=../ directory traversal to read arbitrary files. | 5.0 |
2006-04-20 | CVE-2006-1944 | Cross-Site Scripting vulnerability in CommuniMail Multiple cross-site scripting (XSS) vulnerabilities in SibSoft CommuniMail 1.2 and earlier allow remote attackers to inject arbitrary web script or HTML via (1) the list_id parameter in mailadmin.cgi and (2) the form_id parameter in templates.cgi. | 2.6 |