Skip to main content

H Sphere

2 CVEs product

Monthly

CVE-2022-30777 MEDIUM POC This Month

Parallels H-Sphere 3.6.1713 allows XSS via the index_en.php from parameter. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

PHP XSS H Sphere
NVD
CVSS 3.1
6.1
EPSS
2.2%
CVE-2012-5004 MEDIUM POC This Month

Multiple cross-site request forgery (CSRF) vulnerabilities in Parallels H-Sphere 3.3 Patch 1 allow remote attackers to hijack the authentication of admins for requests that (1) add group plans via. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable. Public exploit code available and no vendor patch available.

CSRF H Sphere
NVD
CVSS 2.0
6.8
EPSS
0.3%
EPSS 2% CVSS 6.1
MEDIUM POC This Month

Parallels H-Sphere 3.6.1713 allows XSS via the index_en.php from parameter. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

PHP XSS H Sphere
NVD
EPSS 0% CVSS 6.8
MEDIUM POC This Month

Multiple cross-site request forgery (CSRF) vulnerabilities in Parallels H-Sphere 3.3 Patch 1 allow remote attackers to hijack the authentication of admins for requests that (1) add group plans via. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable. Public exploit code available and no vendor patch available.

CSRF H Sphere
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy