Vulnerabilities > Sparkdevnetwork

DATE	CVE	VULNERABILITY TITLE	RISK
2021-01-07	CVE-2019-18643	Unrestricted Upload of File with Dangerous Type vulnerability in Sparkdevnetwork Rock RMS Rock RMS versions before 8.10 and versions 9.0 through 9.3 fails to properly validate files uploaded in the application. network low complexity sparkdevnetwork CWE-434 critical	9.8
2021-01-07	CVE-2019-18642	Unspecified vulnerability in Sparkdevnetwork Rock RMS Rock RMS version before 8.6 is vulnerable to account takeover by tampering with the user ID parameter in the profile update feature. network low complexity sparkdevnetwork critical	9.8
2020-03-20	CVE-2019-18641	Unspecified vulnerability in Sparkdevnetwork Rock RMS Rock RMS before 1.8.6 mishandles vCard access control within the People/GetVCard/REST controller. network low complexity sparkdevnetwork critical	9.8

Vulnerabilities > Sparkdevnetwork {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Sparkdevnetwork"}]}