Vulnerabilities > Untis

DATE CVE VULNERABILITY TITLE RISK
2020-09-24 CVE-2020-22453 Cross-site Scripting vulnerability in Untis Webuntis
Untis WebUntis before 2020.9.6 allows XSS in multiple functions that store information.
network
low complexity
untis CWE-79
6.1
2020-03-13 CVE-2020-10540 Cross-Site Request Forgery (CSRF) vulnerability in Untis Webuntis
Untis WebUntis before 2020.9.6 allows CSRF for certain combinations of rights and modules.
network
low complexity
untis CWE-352
8.8