Vulnerabilities > Veeam > ONE Reporter

DATE CVE VULNERABILITY TITLE RISK
2019-07-27 CVE-2019-14298 Cross-site Scripting vulnerability in Veeam ONE Reporter 9.5.0.3201
Veeam ONE Reporter 9.5.0.3201 allows XSS via a crafted Description(config) field to addDashboard or editDashboard in CommonDataHandlerReadOnly.ashx.
network
low complexity
veeam CWE-79
5.4
2019-07-27 CVE-2019-14297 Cross-site Scripting vulnerability in Veeam ONE Reporter 9.5.0.3201
Veeam ONE Reporter 9.5.0.3201 allows XSS via the Add/Edit Widget with a crafted Caption field to setDashboardWidget in CommonDataHandlerReadOnly.ashx.
network
low complexity
veeam CWE-79
5.4
2019-05-06 CVE-2019-11569 Cross-Site Request Forgery (CSRF) vulnerability in Veeam ONE Reporter 9.5.0.3201
Veeam ONE Reporter 9.5.0.3201 allows CSRF.
network
low complexity
veeam CWE-352
8.8