Vulnerabilities > Tendenci
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-06-21 | CVE-2020-14942 | Deserialization of Untrusted Data vulnerability in Tendenci 12.0.10 Tendenci 12.0.10 allows unrestricted deserialization in apps\helpdesk\views\staff.py. | 7.5 |
| 2008-02-15 | CVE-2008-0793 | Cross-Site Scripting vulnerability in Tendenci CMS Multiple cross-site scripting (XSS) vulnerabilities in search.asp in Tendenci CMS allow remote attackers to inject arbitrary web script or HTML via the (1) category, (2) searchtext, (3) jobcategoryid, (4) contactcompany, and unspecified other parameters. | 4.3 |