Vulnerabilities > UNA

DATE CVE VULNERABILITY TITLE RISK
2019-08-09 CVE-2019-14805 Cross-site Scripting vulnerability in UNA 10.0.0
studio/builder_menu.php?page=sets in UNA 10.0.0-RC1 allows XSS via the System Name field under Sets during set editing.
network
low complexity
una CWE-79
4.8
4.8
2019-08-09 CVE-2019-14804 Cross-site Scripting vulnerability in UNA 10.0.0
studio/polyglot.php?page=etemplates in UNA 10.0.0-RC1 allows XSS via the System Name field under Emails during template editing.
network
low complexity
una CWE-79
4.8
4.8