Skip to main content

Canopy

2 CVEs product

Monthly

CVE-2021-34815 MEDIUM POC This Month

CheckSec Canopy before 3.5.2 allows XSS attacks against the login page via the LOGIN_PAGE_DISCLAIMER parameter. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Canopy
NVD
CVSS 3.1
4.8
EPSS
0.8%
CVE-2018-9036 MEDIUM This Month

CheckSec Canopy 3.x before 3.0.7 has stored XSS via the Login Page Disclaimer, allowing attacks by low-privileged users against higher-privileged users. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Canopy
NVD
CVSS 3.0
4.8
EPSS
0.5%
EPSS 1% CVSS 4.8
MEDIUM POC This Month

CheckSec Canopy before 3.5.2 allows XSS attacks against the login page via the LOGIN_PAGE_DISCLAIMER parameter. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Canopy
NVD
EPSS 1% CVSS 4.8
MEDIUM This Month

CheckSec Canopy 3.x before 3.0.7 has stored XSS via the Login Page Disclaimer, allowing attacks by low-privileged users against higher-privileged users. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Canopy
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy