Corporater » Epm Suite : Security Vulnerabilities, CVEs,

CVE-2013-3584

Cross-site scripting (XSS) vulnerability in Corporater EPM Suite allows remote attackers to inject arbitrary web script or HTML via the customerId parameter to an unspecified component.
Max CVSS
4.3
EPSS Score
0.15%
Published
2013-08-28
Updated
2013-10-07

CVE-2013-3583

Cross-site request forgery (CSRF) vulnerability in saveProperties.html in Corporater EPM Suite allows remote attackers to hijack the authentication of arbitrary users for requests that change passwords.
Max CVSS
6.8
EPSS Score
0.07%
Published
2013-08-28
Updated
2013-08-29
2 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close