Vulnerabilities > Silverpeas > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-12-13 | CVE-2023-47321 | Unspecified vulnerability in Silverpeas Silverpeas Core 6.3.1 is vulnerable to Incorrect Access Control via the "Porlet Deployer" which allows administrators to deploy .WAR portlets. | 4.9 |
| 2023-12-13 | CVE-2023-47324 | Cross-site Scripting vulnerability in Silverpeas Silverpeas Core 6.3.1 is vulnerable to Cross Site Scripting (XSS) via the message/notification feature. | 5.4 |
| 2023-12-13 | CVE-2023-47325 | Unspecified vulnerability in Silverpeas Silverpeas Core 6.3.1 administrative "Bin" feature is affected by broken access control. | 5.4 |
| 2023-12-13 | CVE-2023-47327 | Unspecified vulnerability in Silverpeas The "Create a Space" feature in Silverpeas Core 6.3.1 is reserved for use by administrators. | 4.3 |