Vulnerabilities > Sysax > Multi Server > 6.90

DATE CVE VULNERABILITY TITLE RISK
2020-08-19 CVE-2020-23574 Unrestricted Upload of File with Dangerous Type vulnerability in Sysax Multi Server 6.90
When uploading a file in Sysax Multi Server 6.90, an authenticated user can modify the filename="" parameter in the uploadfile_name1.htm form to a length of 368 or more bytes.
network
low complexity
sysax CWE-434
4.0
4.0
2020-06-02 CVE-2020-13229 Session Fixation vulnerability in Sysax Multi Server 6.90
An issue was discovered in Sysax Multi Server 6.90.
network
sysax CWE-384
6.8
6.8
2020-06-02 CVE-2020-13228 Cross-site Scripting vulnerability in Sysax Multi Server 6.90
An issue was discovered in Sysax Multi Server 6.90.
network
sysax CWE-79
4.3
4.3
2020-06-02 CVE-2020-13227 Path Traversal vulnerability in Sysax Multi Server 6.90
An issue was discovered in Sysax Multi Server 6.90.
network
low complexity
sysax CWE-22
5.0
5.0