Vulnerabilities > Tcman > GIM > Medium

DATE CVE VULNERABILITY TITLE RISK
2023-10-04 CVE-2022-36277 Cross-site Scripting vulnerability in Tcman GIM 8.0.1
The 'sReferencia', 'sDescripcion', 'txtCodigo' and 'txtDescripcion' parameters, in the frmGestionStock.aspx and frmEditServicio.aspx files in TCMAN GIM v8.0.1, could allow an attacker to perform persistent XSS attacks.
network
low complexity
tcman CWE-79
6.1
6.1
2022-02-11 CVE-2021-4046 Cross-site Scripting vulnerability in Tcman GIM 8.0.1/8.01
The m_txtNom y m_txtCognoms parameters in TCMAN GIM v8.01 allow an attacker to perform persistent XSS attacks.
network
low complexity
tcman CWE-79
5.4
5.4
2021-12-17 CVE-2021-40852 Open Redirect vulnerability in Tcman GIM 11.0/8.0
TCMAN GIM is affected by an open redirect vulnerability.
network
low complexity
tcman CWE-601
6.1
6.1