Vulnerabilities (CVE)

Filtered by vendor Bizagi Subscribe
Filtered by product Business Process Management Suite
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2014-2947 1 Bizagi 1 Business Process Management Suite 2024-02-04 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in Login.aspx in Bizagi BPM Suite before 10.3 allows remote attackers to inject arbitrary web script or HTML via the txtUsername parameter.
CVE-2014-2948 1 Bizagi 1 Business Process Management Suite 2024-02-04 6.5 MEDIUM N/A
SQL injection vulnerability in workflowenginesoa.asmx in Bizagi BPM Suite through 10.4 allows remote authenticated users to execute arbitrary SQL commands via a crafted SOAP request.