Vulnerabilities > Squaredup

DATE CVE VULNERABILITY TITLE RISK
2024-09-03 CVE-2024-45180 Cross-site Scripting vulnerability in Squaredup DS for Scom
SquaredUp DS for SCOM 6.2.1.11104 allows XSS.
network
low complexity
squaredup CWE-79
5.4
2023-02-23 CVE-2022-46784 Open Redirect vulnerability in Squaredup Dashboard Server
SquaredUp Dashboard Server SCOM edition before 5.7.1 GA allows open redirection.
network
low complexity
squaredup CWE-601
6.1
2023-02-23 CVE-2022-46785 Cross-site Scripting vulnerability in Squaredup Dashboard Server
SquaredUp Dashboard Server SCOM edition before 5.7.1 GA allows XSS (issue 1 of 2).
network
low complexity
squaredup CWE-79
6.1
2023-02-23 CVE-2022-46786 Cross-site Scripting vulnerability in Squaredup Dashboard Server
SquaredUp Dashboard Server SCOM edition before 5.7.1 GA allows XSS (issue 2 of 2).
network
low complexity
squaredup CWE-79
5.4
2021-12-07 CVE-2021-40092 Cross-site Scripting vulnerability in Squaredup 4.6/5.2.1.6654
A cross-site scripting (XSS) vulnerability in Image Tile in SquaredUp for SCOM 5.2.1.6654 allows remote attackers to inject arbitrary web script or HTML via an SVG file.
network
low complexity
squaredup CWE-79
5.4
2021-12-07 CVE-2021-40093 Cross-site Scripting vulnerability in Squaredup 4.6/5.2.1.6654
A cross-site scripting (XSS) vulnerability in integration configuration in SquaredUp for SCOM 5.2.1.6654 allows remote attackers to inject arbitrary web script or HTML via dashboard actions.
network
low complexity
squaredup CWE-79
5.4
2021-12-07 CVE-2021-40094 Cross-site Scripting vulnerability in Squaredup 4.6/5.2.1.6654
A DOM-based XSS vulnerability affects SquaredUp for SCOM 5.2.1.6654.
network
low complexity
squaredup CWE-79
5.4
2021-12-07 CVE-2021-40095 Unspecified vulnerability in Squaredup 4.6/5.2.1.6654
An issue was discovered in SquaredUp for SCOM 5.2.1.6654.
network
low complexity
squaredup
4.9
2021-12-07 CVE-2021-40096 Cross-site Scripting vulnerability in Squaredup 4.6/5.2.1.6654
A cross-site scripting (XSS) vulnerability in integration configuration in SquaredUp for SCOM 5.2.1.6654 allows remote attackers to inject arbitrary web script or HTML via modification of the authorisationUrl in some integration configurations.
network
low complexity
squaredup CWE-79
5.4
2021-12-06 CVE-2021-40091 Server-Side Request Forgery (SSRF) vulnerability in Squaredup 4.6/5.2.1.6654
An SSRF issue was discovered in SquaredUp for SCOM 5.2.1.6654.
network
low complexity
squaredup CWE-918
critical
9.8