Skip to main content

Easy Address Book Web Server

3 CVEs product

Monthly

CVE-2023-4493 MEDIUM This Month

Stored Cross-Site Scripting in Easy Address Book Web Server 1.6 version, through the users_admin.ghp file that affects multiple parameters such as (firstname, homephone, lastname, lastname,. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Easy Address Book Web Server
NVD
CVSS 3.1
5.4
EPSS
0.4%
CVE-2023-4492 MEDIUM This Month

Vulnerability in Easy Address Book Web Server 1.6 version, affecting the parameters (firstname, homephone, lastname, middlename, workaddress, workcity, workcountry, workphone, workstate and workzip). Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Easy Address Book Web Server
NVD
CVSS 3.1
6.1
EPSS
0.4%
CVE-2023-4491 CRITICAL Act Now

Buffer overflow vulnerability in Easy Address Book Web Server 1.6 version. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow RCE Easy Address Book Web Server
NVD
CVSS 3.1
9.8
EPSS
0.9%
EPSS 0% CVSS 5.4
MEDIUM This Month

Stored Cross-Site Scripting in Easy Address Book Web Server 1.6 version, through the users_admin.ghp file that affects multiple parameters such as (firstname, homephone, lastname, lastname,. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Easy Address Book Web Server
NVD
EPSS 0% CVSS 6.1
MEDIUM This Month

Vulnerability in Easy Address Book Web Server 1.6 version, affecting the parameters (firstname, homephone, lastname, middlename, workaddress, workcity, workcountry, workphone, workstate and workzip). Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Easy Address Book Web Server
NVD
EPSS 1% CVSS 9.8
CRITICAL Act Now

Buffer overflow vulnerability in Easy Address Book Web Server 1.6 version. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow RCE Easy Address Book Web Server
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy