Vulnerabilities > Simpleredak

DATE CVE VULNERABILITY TITLE RISK
2023-06-02 CVE-2023-33761 Cross-site Scripting vulnerability in Simpleredak 2.47.23.05
eMedia Consulting simpleRedak up to v2.47.23.05 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the component /view/cb/format_642.php.
network
low complexity
simpleredak CWE-79
6.1
2023-06-02 CVE-2023-33762 SQL Injection vulnerability in Simpleredak 2.47.23.05
eMedia Consulting simpleRedak up to v2.47.23.05 was discovered to contain a SQL injection vulnerability via the Activity parameter.
network
low complexity
simpleredak CWE-89
critical
9.8
2023-06-02 CVE-2023-33763 Cross-site Scripting vulnerability in Simpleredak 2.47.23.05
eMedia Consulting simpleRedak up to v2.47.23.05 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the component /scheduler/index.php.
network
low complexity
simpleredak CWE-79
6.1
2023-06-01 CVE-2023-33764 Cross-site Scripting vulnerability in Simpleredak 2.47.23.05
eMedia Consulting simpleRedak up to v2.47.23.05 was discovered to contain a stored cross-site scripting (XSS) vulnerability via the component #/de/casting/show/detail/<ID>.
network
low complexity
simpleredak CWE-79
5.4