Vulnerabilities > Solarwinds > Orion Platform > Medium

DATE CVE VULNERABILITY TITLE RISK
2021-02-10 CVE-2020-27870 Path Traversal vulnerability in Solarwinds Orion Platform 2020.2.1
This vulnerability allows remote attackers to disclose sensitive information on affected installations of SolarWinds Orion Platform 2020.2.1.
network
low complexity
solarwinds CWE-22
4.0
4.0
2020-01-17 CVE-2019-17127 Cross-site Scripting vulnerability in Solarwinds Orion Platform 2019.2
A Stored Client Side Template Injection (CSTI) with Angular was discovered in the SolarWinds Orion Platform 2019.2 HF1 in many application forms.
network
solarwinds CWE-79
4.3
4.3
2020-01-17 CVE-2019-17125 Cross-site Scripting vulnerability in Solarwinds Orion Platform 2019.2
A Reflected Client Side Template Injection (CSTI) with Angular was discovered in the SolarWinds Orion Platform 2019.2 HF1 in many forms.
network
solarwinds CWE-79
4.3
4.3