Vulnerabilities > Veeam > ONE Reporter
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2019-07-27 | CVE-2019-14298 | Cross-site Scripting vulnerability in Veeam ONE Reporter 9.5.0.3201 Veeam ONE Reporter 9.5.0.3201 allows XSS via a crafted Description(config) field to addDashboard or editDashboard in CommonDataHandlerReadOnly.ashx. | 5.4 |
2019-07-27 | CVE-2019-14297 | Cross-site Scripting vulnerability in Veeam ONE Reporter 9.5.0.3201 Veeam ONE Reporter 9.5.0.3201 allows XSS via the Add/Edit Widget with a crafted Caption field to setDashboardWidget in CommonDataHandlerReadOnly.ashx. | 5.4 |
2019-05-06 | CVE-2019-11569 | Cross-Site Request Forgery (CSRF) vulnerability in Veeam ONE Reporter 9.5.0.3201 Veeam ONE Reporter 9.5.0.3201 allows CSRF. | 8.8 |