Vulnerabilities > Untis
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2020-09-24 | CVE-2020-22453 | Cross-site Scripting vulnerability in Untis Webuntis Untis WebUntis before 2020.9.6 allows XSS in multiple functions that store information. | 6.1 |
2020-03-13 | CVE-2020-10540 | Cross-Site Request Forgery (CSRF) vulnerability in Untis Webuntis Untis WebUntis before 2020.9.6 allows CSRF for certain combinations of rights and modules. | 8.8 |