Vulnerabilities > WEB Audimex

DATE CVE VULNERABILITY TITLE RISK
2023-10-25 CVE-2023-46396 Cross-site Scripting vulnerability in Web-Audimex Audimex 15.0.0
Audimex 15.0.0 is vulnerable to Cross Site Scripting (XSS) in /audimex/cgi-bin/wal.fcgi via company parameter search filters.
network
low complexity
web-audimex CWE-79
5.4
2023-09-05 CVE-2023-36361 SQL Injection vulnerability in Web-Audimex Audimexee 14.1.7
Audimexee v14.1.7 was discovered to contain a SQL injection vulnerability via the p_table_name parameter.
network
low complexity
web-audimex CWE-89
critical
9.8
2023-08-29 CVE-2023-39558 Cross-site Scripting vulnerability in Web-Audimex Audimexee 15.0
AudimexEE v15.0 was discovered to contain multiple reflected cross-site scripting (XSS) vulnerabilities via the Show Kai Data component.
network
low complexity
web-audimex CWE-79
6.1
2023-08-29 CVE-2023-39559 Path Traversal vulnerability in Web-Audimex Audimexee 15.0
AudimexEE 15.0 was discovered to contain a full path disclosure vulnerability.
network
low complexity
web-audimex CWE-22
5.3
2020-11-05 CVE-2020-28115 SQL Injection vulnerability in Web-Audimex Audimexee
SQL Injection vulnerability in "Documents component" found in AudimexEE version 14.1.0 allows an attacker to execute arbitrary SQL commands via the object_path parameter.
network
low complexity
web-audimex CWE-89
6.5
2020-11-05 CVE-2020-28047 Cross-site Scripting vulnerability in Web-Audimex Audimexee
AudimexEE before 14.1.1 is vulnerable to Reflected XSS (Cross-Site-Scripting).
3.5