Vulnerabilities > Solarwinds > Solarwinds Platform > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-12-04 | CVE-2024-45717 | Cross-site Scripting vulnerability in Solarwinds Platform The SolarWinds Platform was susceptible to a XSS vulnerability that affects the search and node information section of the user interface. | 4.8 |
| 2024-10-16 | CVE-2024-45715 | Cross-site Scripting vulnerability in Solarwinds Platform The SolarWinds Platform was susceptible to a Cross-Site Scripting vulnerability when performing an edit function to existing elements. | 6.1 |
| 2024-06-04 | CVE-2024-29004 | Unspecified vulnerability in Solarwinds Platform The SolarWinds Platform was determined to be affected by a stored cross-site scripting vulnerability affecting the web console. | 4.8 |
| 2024-05-20 | CVE-2024-29000 | Unspecified vulnerability in Solarwinds Platform The SolarWinds Platform was determined to be affected by a reflected cross-site scripting vulnerability affecting the web console. | 4.8 |
| 2024-04-18 | CVE-2024-29003 | Unspecified vulnerability in Solarwinds Platform The SolarWinds Platform was susceptible to a XSS vulnerability that affects the maps section of the user interface. | 5.4 |
| 2024-04-18 | CVE-2024-28076 | Unspecified vulnerability in Solarwinds Platform The SolarWinds Platform was susceptible to a Arbitrary Open Redirection Vulnerability. | 4.7 |
| 2023-04-25 | CVE-2023-23839 | Unspecified vulnerability in Solarwinds Platform The SolarWinds Platform was susceptible to the Exposure of Sensitive Information Vulnerability. | 6.5 |
| 2022-12-19 | CVE-2022-47512 | Cleartext Storage of Sensitive Information vulnerability in Solarwinds Platform 2022.4.0 Sensitive information was stored in plain text in a file that is accessible by a user with a local account in Hybrid Cloud Observability (HCO)/ SolarWinds Platform 2022.4. | 5.5 |
| 2022-09-30 | CVE-2022-36965 | Cross-site Scripting vulnerability in Solarwinds Platform 2022.2.0 Insufficient sanitization of inputs in QoE application input field could lead to stored and Dom based XSS attack. | 6.1 |