Vulnerabilities > Whitebearsolutions > Wbsairback > 21.02.04

DATE CVE VULNERABILITY TITLE RISK
2024-05-14 CVE-2024-3787 Code Injection vulnerability in Whitebearsolutions Wbsairback 21.02.04
Vulnerability in WBSAirback 21.02.04, which involves improper neutralisation of Server-Side Includes (SSI), through S3 disks (/admin/DeviceS3).
network
low complexity
whitebearsolutions CWE-94
6.6
2024-05-14 CVE-2024-3788 Unspecified vulnerability in Whitebearsolutions Wbsairback 21.02.04
Vulnerability in WBSAirback 21.02.04, which involves improper neutralisation of Server-Side Includes (SSI), through License (/admin/CDPUsers).
network
low complexity
whitebearsolutions
6.6
2024-05-14 CVE-2024-3789 Unspecified vulnerability in Whitebearsolutions Wbsairback 21.02.04
Uncontrolled resource consumption vulnerability in White Bear Solutions WBSAirback, version 21.02.04.
network
low complexity
whitebearsolutions
6.5
2024-05-14 CVE-2024-3790 Cross-site Scripting vulnerability in Whitebearsolutions Wbsairback 21.02.04
Vulnerability in WBSAirback 21.02.04, which consists of a stored Cross-Site Scripting (XSS) through /admin/SystemUsers, login / description fields, passwd1/ passwd2 parameters.
network
low complexity
whitebearsolutions CWE-79
4.8
2024-05-14 CVE-2024-3791 Cross-site Scripting vulnerability in Whitebearsolutions Wbsairback 21.02.04
Vulnerability in WBSAirback 21.02.04, which consists of a stored Cross-Site Scripting (XSS) through /admin/SystemConfiguration, name / free memory limit fields , type / password parameters.
network
low complexity
whitebearsolutions CWE-79
4.8
2024-05-14 CVE-2024-3792 Cross-site Scripting vulnerability in Whitebearsolutions Wbsairback 21.02.04
Vulnerability in WBSAirback 21.02.04, which consists of a stored Cross-Site Scripting (XSS) through /admin/DeviceReplication, execution range field, all parameters.
network
low complexity
whitebearsolutions CWE-79
4.8
2024-05-14 CVE-2024-3793 Cross-site Scripting vulnerability in Whitebearsolutions Wbsairback 21.02.04
Vulnerability in WBSAirback 21.02.04, which consists of a stored Cross-Site Scripting (XSS) through /admin/CloudAccounts, account name / user password / server fields, all parameters.
network
low complexity
whitebearsolutions CWE-79
4.8
2024-05-14 CVE-2024-3794 Cross-site Scripting vulnerability in Whitebearsolutions Wbsairback 21.02.04
Vulnerability in WBSAirback 21.02.04, which consists of a stored Cross-Site Scripting (XSS) through /admin/AdvancedSystem, description field, all parameters.
network
low complexity
whitebearsolutions CWE-79
4.8
2024-05-14 CVE-2024-3795 Cross-site Scripting vulnerability in Whitebearsolutions Wbsairback 21.02.04
Vulnerability in WBSAirback 21.02.04, which consists of a stored Cross-Site Scripting (XSS) through /admin/BackupTemplate, name / description fields.
network
low complexity
whitebearsolutions CWE-79
4.8
2024-05-14 CVE-2024-3796 Cross-site Scripting vulnerability in Whitebearsolutions Wbsairback 21.02.04
Vulnerability in WBSAirback 21.02.04, which consists of a stored Cross-Site Scripting (XSS) through /admin/BackupSchedule, description field.
network
low complexity
whitebearsolutions CWE-79
4.8