Vulnerabilities (CVE)

Filtered by vendor Rasilient Subscribe
Filtered by product Pixelstor 5000
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2020-6758 1 Rasilient 2 Pixelstor 5000, Pixelstor 5000 Firmware 2024-02-04 4.3 MEDIUM 6.1 MEDIUM
A cross-site scripting (XSS) vulnerability in Option/optionsAll.php in Rasilient PixelStor 5000 K:4.0.1580-20150629 (KDI Version) allows remote attackers to inject arbitrary web script or HTML via the ContentFrame parameter.
CVE-2020-6757 1 Rasilient 2 Pixelstor 5000, Pixelstor 5000 Firmware 2024-02-04 6.5 MEDIUM 8.8 HIGH
contentHostProperties.php in Rasilient PixelStor 5000 K:4.0.1580-20150629 (KDI Version) allows authenticated attackers to remotely execute code via the name parameter.
CVE-2020-6756 1 Rasilient 2 Pixelstor 5000, Pixelstor 5000 Firmware 2024-02-04 7.5 HIGH 9.8 CRITICAL
languageOptions.php in Rasilient PixelStor 5000 K:4.0.1580-20150629 (KDI Version) allows unauthenticated attackers to remotely execute code via the lang parameter.