Vulnerabilities > Softwarepublico > Medium

DATE CVE VULNERABILITY TITLE RISK
2022-07-14 CVE-2022-34092 Cross-site Scripting vulnerability in Softwarepublico I3Geo 7.0.5
Portal do Software Publico Brasileiro i3geo v7.0.5 was discovered to contain a cross-site scripting (XSS) vulnerability via svg2img.php.
network
low complexity
softwarepublico CWE-79
6.1
6.1
2022-07-14 CVE-2022-34093 Cross-site Scripting vulnerability in Softwarepublico I3Geo 7.0.5
Portal do Software Publico Brasileiro i3geo v7.0.5 was discovered to contain a cross-site scripting (XSS) vulnerability via access_token.php.
network
low complexity
softwarepublico CWE-79
6.1
6.1
2022-07-14 CVE-2022-34094 Cross-site Scripting vulnerability in Softwarepublico I3Geo 7.0.5
Portal do Software Publico Brasileiro i3geo v7.0.5 was discovered to contain a cross-site scripting (XSS) vulnerability via request_token.php.
network
low complexity
softwarepublico CWE-79
6.1
6.1
2017-10-23 CVE-2017-15380 Cross-site Scripting vulnerability in Softwarepublico E-Sic 1.0
XSS exists in the E-Sic 1.0 /cadastro/index.php URI (aka the requester's registration area) via the nome parameter.
network
low complexity
softwarepublico CWE-79
6.1
6.1