Skip to main content

Team Pro

6 CVEs product

Monthly

CVE-2024-9923 MEDIUM This Month

The Team+ from TEAMPLUS TECHNOLOGY does not properly validate a specific page parameter, allowing remote attackers with administrator privileges to move arbitrary system files to the website root. Rated medium severity (CVSS 4.9), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Team Pro
NVD
CVSS 3.1
4.9
EPSS
0.6%
CVE-2024-9922 HIGH This Week

The Team+ from TEAMPLUS TECHNOLOGY does not properly validate a specific page parameter, allowing unauthenticated remote attackers to exploit this vulnerability to read arbitrary system files. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Team Pro
NVD
CVSS 3.1
7.5
EPSS
0.7%
CVE-2024-9921 CRITICAL Act Now

The Team+ from TEAMPLUS TECHNOLOGY does not properly validate specific page parameter, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read, modify and delete database. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SQLi Team Pro
NVD
CVSS 3.1
9.8
EPSS
0.7%
CVE-2022-35221 MEDIUM This Month

Teamplus Pro community discussion has an ‘allocation of resource without limits or throttling’ vulnerability on thread subject field. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Team Pro
NVD
CVSS 3.1
5.4
EPSS
0.7%
CVE-2022-35220 MEDIUM This Month

Teamplus Pro community discussion function has an ‘allocation of resource without limits or throttling’ vulnerability. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Team Pro
NVD
CVSS 3.1
6.5
EPSS
0.8%
CVE-2022-32958 MEDIUM This Month

A remote attacker with general user privilege can send a message to Teamplus Pro’s chat group that exceeds message size limit, to terminate other recipients’ Teamplus Pro chat process. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Team Pro
NVD
CVSS 3.1
6.5
EPSS
0.8%
EPSS 1% CVSS 4.9
MEDIUM This Month

The Team+ from TEAMPLUS TECHNOLOGY does not properly validate a specific page parameter, allowing remote attackers with administrator privileges to move arbitrary system files to the website root. Rated medium severity (CVSS 4.9), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Team Pro
NVD
EPSS 1% CVSS 7.5
HIGH This Week

The Team+ from TEAMPLUS TECHNOLOGY does not properly validate a specific page parameter, allowing unauthenticated remote attackers to exploit this vulnerability to read arbitrary system files. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Team Pro
NVD
EPSS 1% CVSS 9.8
CRITICAL Act Now

The Team+ from TEAMPLUS TECHNOLOGY does not properly validate specific page parameter, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read, modify and delete database. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SQLi Team Pro
NVD
EPSS 1% CVSS 5.4
MEDIUM This Month

Teamplus Pro community discussion has an ‘allocation of resource without limits or throttling’ vulnerability on thread subject field. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Team Pro
NVD
EPSS 1% CVSS 6.5
MEDIUM This Month

Teamplus Pro community discussion function has an ‘allocation of resource without limits or throttling’ vulnerability. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Team Pro
NVD
EPSS 1% CVSS 6.5
MEDIUM This Month

A remote attacker with general user privilege can send a message to Teamplus Pro’s chat group that exceeds message size limit, to terminate other recipients’ Teamplus Pro chat process. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Team Pro
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy