Filtered by vendor Metaways
Subscribe
Total
2 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2011-1666 | 1 Metaways | 1 Tine | 2025-04-11 | 5.0 MEDIUM | N/A |
| Metaways Tine 2.0 allows remote attackers to obtain sensitive information via unknown vectors in (1) Crm/Controller.php, (2) Crm/Export/Csv.php, or (3) Calendar/Model/Attender.php, which reveal the full installation path. | |||||
| CVE-2023-41364 | 1 Metaways | 1 Tine | 2024-11-21 | N/A | 9.8 CRITICAL |
| In tine through 2023.01.14.325, the sort parameter of the /index.php endpoint allows SQL Injection. | |||||