Vulnerabilities > WEB Audimex
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-06-04 | CVE-2024-30889 | Cross-site Scripting vulnerability in Web-Audimex Audimexee 15.1.2 Cross Site Scripting vulnerability in audimex audimexEE v.15.1.2 and fixed in 15.1.3.9 allows a remote attacker to execute arbitrary code via the service, method, widget_type, request_id, payload parameters. | 5.4 |
| 2023-10-25 | CVE-2023-46396 | Cross-site Scripting vulnerability in Web-Audimex Audimex 15.0.0 Audimex 15.0.0 is vulnerable to Cross Site Scripting (XSS) in /audimex/cgi-bin/wal.fcgi via company parameter search filters. | 5.4 |
| 2023-09-05 | CVE-2023-36361 | SQL Injection vulnerability in Web-Audimex Audimexee 14.1.7 Audimexee v14.1.7 was discovered to contain a SQL injection vulnerability via the p_table_name parameter. | 9.8 |
| 2023-08-29 | CVE-2023-39558 | Cross-site Scripting vulnerability in Web-Audimex Audimexee 15.0 AudimexEE v15.0 was discovered to contain multiple reflected cross-site scripting (XSS) vulnerabilities via the Show Kai Data component. | 6.1 |
| 2023-08-29 | CVE-2023-39559 | Path Traversal vulnerability in Web-Audimex Audimexee 15.0 AudimexEE 15.0 was discovered to contain a full path disclosure vulnerability. | 5.3 |
| 2020-11-05 | CVE-2020-28115 | SQL Injection vulnerability in Web-Audimex Audimexee 14.1.0 SQL Injection vulnerability in "Documents component" found in AudimexEE version 14.1.0 allows an attacker to execute arbitrary SQL commands via the object_path parameter. | 8.8 |
| 2020-11-05 | CVE-2020-28047 | Cross-site Scripting vulnerability in Web-Audimex Audimexee 14.1.0 AudimexEE before 14.1.1 is vulnerable to Reflected XSS (Cross-Site-Scripting). | 5.4 |