Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Personal_management_system
(Personal\-Management\-System)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 3 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2024-07-05 | CVE-2024-29319 | Volmarg Personal Management System 1.4.64 is vulnerable to SSRF (Server Side Request Forgery) via uploading a SVG file. The server can make unintended HTTP and DNS requests to a server that the attacker controls. | Personal_management_system | 9.8 | ||
| 2024-07-05 | CVE-2024-29318 | Volmarg Personal Management System 1.4.64 is vulnerable to stored cross site scripting (XSS) via upload of a SVG file with embedded javascript code. | Personal_management_system | 5.4 | ||
| 2023-10-04 | CVE-2023-43838 | An arbitrary file upload vulnerability in Personal Management System v1.4.64 allows attackers to execute arbitrary code via uploading a crafted SVG file into a user profile's avatar. | Personal_management_system | 7.8 |