Vulnerabilities (CVE)

Filtered by vendor Liveconfig Subscribe
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2024-22851 1 Liveconfig 1 Liveconfig 2024-11-21 N/A 7.5 HIGH
Directory Traversal Vulnerability in LiveConfig before v.2.5.2 allows a remote attacker to obtain sensitive information via a crafted request to the /static/ endpoint.
CVE-2021-40841 1 Liveconfig 1 Liveconfig 2024-11-21 4.0 MEDIUM 6.5 MEDIUM
A Path Traversal vulnerability for a log file in LiveConfig 2.12.2 allows authenticated attackers to read files on the underlying server.
CVE-2021-40840 1 Liveconfig 1 Liveconfig 2024-11-21 3.5 LOW 5.4 MEDIUM
A Stored XSS issue exists in the admin/users user administration form in LiveConfig 2.12.2.