Vulnerabilities (CVE)

Filtered by vendor Sims Project Subscribe
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-34551 1 Sims Project 1 Sims 2024-11-21 N/A 6.5 MEDIUM
Sims v1.0 was discovered to allow path traversal when downloading attachments.
CVE-2022-34549 1 Sims Project 1 Sims 2024-11-21 N/A 8.8 HIGH
Sims v1.0 was discovered to contain an arbitrary file upload vulnerability via the component /uploadServlet. This vulnerability allows attackers to escalate privileges and execute arbitrary commands via a crafted file.