Vulnerabilities (CVE)

Filtered by vendor Agilepoint Subscribe
Total 4 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-31179 1 Agilepoint 1 Agilepoint Nx 2024-11-21 N/A 6.5 MEDIUM
AgilePoint NX v8.0 SU2.2 & SU2.3 - Path traversal - Vulnerability allows path traversal and downloading files from the server, by an unspecified request.
CVE-2023-31178 1 Agilepoint 1 Agilepoint Nx 2024-11-21 N/A 8.1 HIGH
AgilePoint NX v8.0 SU2.2 & SU2.3 – Arbitrary File Delete Vulnerability allows arbitrary file deletion, by an unspecified request.
CVE-2023-24507 1 Agilepoint 1 Agilepoint Nx 2024-11-21 N/A 8.8 HIGH
AgilePoint NX v8.0 SU2.2 & SU2.3 – Insecure File Upload - Vulnerability allows insecure file upload, by an unspecified request.
CVE-2022-30619 1 Agilepoint 1 Agilepoint Nx 2024-11-21 6.5 MEDIUM 5.9 MEDIUM
Editable SQL Queries behind Base64 encoding sending from the Client-Side to The Server-Side for a particular API used in legacy Work Center module. He attack is available for any authenticated user, in any kind of rule. under the function : /AgilePointServer/Extension/FetchUsingEncodedData in the parameter: EncodedData