Vulnerabilities (CVE)

Filtered by vendor Primetek Subscribe
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2020-10544 1 Primetek 1 Primefaces 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
An XSS issue was discovered in tooltip/tooltip.js in PrimeTek PrimeFaces 7.0.11. In a web application using PrimeFaces, an attacker can provide JavaScript code in an input field whose data is later used as a tooltip title without any input validation.
CVE-2017-1000486 1 Primetek 1 Primefaces 2024-11-21 7.5 HIGH 9.8 CRITICAL
Primetek Primefaces 5.x is vulnerable to a weak encryption flaw resulting in remote code execution