Skip to main content

Oempro

3 CVEs product

Monthly

CVE-2020-9461 MEDIUM POC This Month

Octech Oempro 4.7 through 4.11 allow stored XSS by an authenticated user. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Oempro
NVD GitHub
CVSS 3.1
5.4
EPSS
1.3%
CVE-2020-9460 MEDIUM POC This Month

Octech Oempro 4.7 through 4.11 allow XSS by an authenticated user. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Oempro
NVD GitHub
CVSS 3.1
5.4
EPSS
1.3%
CVE-2019-19740 CRITICAL POC Act Now

Octeth Oempro 4.7 and 4.8 allow SQL injection. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi Oempro
NVD GitHub Exploit-DB
CVSS 3.1
9.8
EPSS
5.8%
EPSS 1% CVSS 5.4
MEDIUM POC This Month

Octech Oempro 4.7 through 4.11 allow stored XSS by an authenticated user. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Oempro
NVD GitHub
EPSS 1% CVSS 5.4
MEDIUM POC This Month

Octech Oempro 4.7 through 4.11 allow XSS by an authenticated user. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Oempro
NVD GitHub
EPSS 6% CVSS 9.8
CRITICAL POC Act Now

Octeth Oempro 4.7 and 4.8 allow SQL injection. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi Oempro
NVD GitHub Exploit-DB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy