Vulnerabilities (CVE)

Filtered by vendor We-com Subscribe
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2020-15540 1 We-com 1 Opendata Cms 2024-11-21 7.5 HIGH 9.8 CRITICAL
We-com OpenData CMS 2.0 allows SQL Injection via the username field on the administrator login page.
CVE-2020-15539 1 We-com 1 Municipality Portal Cms 2024-11-21 7.5 HIGH 9.8 CRITICAL
SQL injection can occur in We-com Municipality portal CMS 2.1.x via the cerca/ keywords field.
CVE-2020-15538 1 We-com 1 Municipality Portal Cms 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
XSS can occur in We-com Municipality portal CMS 2.1.x via the cerca/ search bar.