Vitalsesp

3 CVEs product

Monthly

Sort: Newest CVSS Score EPSS Score Oldest
CVE-2025-14255 MEDIUM This Month

Vitals ESP developed by Galaxy Software Services has a SQL Injection vulnerability, allowing authenticated remote attackers to inject arbitrary SQL commands to read database contents.

SQLi Vitalsesp
NVD
CVSS 3.1
6.5
EPSS
0.1%
CVE-2025-14254 MEDIUM This Month

Vitals ESP developed by Galaxy Software Services has a SQL Injection vulnerability, allowing authenticated remote attackers to inject arbitrary SQL commands to read database contents.

SQLi Vitalsesp
NVD
CVSS 3.1
6.5
EPSS
0.1%
CVE-2025-14253 MEDIUM This Month

Vitals ESP developed by Galaxy Software Services has an Arbitrary File Read vulnerability, allowing privileged remote attackers to exploit Absolute Path Traversal to download arbitrary system files.

Path Traversal Vitalsesp
NVD
CVSS 3.1
4.9
EPSS
0.1%
CVE-2025-14255
EPSS 0% CVSS 6.5
MEDIUM This Month

Vitals ESP developed by Galaxy Software Services has a SQL Injection vulnerability, allowing authenticated remote attackers to inject arbitrary SQL commands to read database contents.

SQLi Vitalsesp
NVD
CVE-2025-14254
EPSS 0% CVSS 6.5
MEDIUM This Month

Vitals ESP developed by Galaxy Software Services has a SQL Injection vulnerability, allowing authenticated remote attackers to inject arbitrary SQL commands to read database contents.

SQLi Vitalsesp
NVD
CVE-2025-14253
EPSS 0% CVSS 4.9
MEDIUM This Month

Vitals ESP developed by Galaxy Software Services has an Arbitrary File Read vulnerability, allowing privileged remote attackers to exploit Absolute Path Traversal to download arbitrary system files.

Path Traversal Vitalsesp
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy