Skip to main content

Webeip

2 CVEs product

Monthly

CVE-2024-9969 MEDIUM This Month

NewType WebEIP v3.0 does not properly validate user input, allowing a remote attacker with regular privileges to insert JavaScript into specific parameters, resulting in a Reflected Cross-site. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Webeip
NVD
CVSS 3.1
5.4
EPSS
0.3%
CVE-2024-9968 HIGH This Week

WebEIP v3.0 from NewType does not properly validate user input, allowing remote attackers with regular privilege to inject SQL commands to read, modify, and delete data stored in database. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

SQLi Webeip
NVD
CVSS 3.1
8.8
EPSS
0.6%
EPSS 0% CVSS 5.4
MEDIUM This Month

NewType WebEIP v3.0 does not properly validate user input, allowing a remote attacker with regular privileges to insert JavaScript into specific parameters, resulting in a Reflected Cross-site. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Webeip
NVD
EPSS 1% CVSS 8.8
HIGH This Week

WebEIP v3.0 from NewType does not properly validate user input, allowing remote attackers with regular privilege to inject SQL commands to read, modify, and delete data stored in database. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

SQLi Webeip
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy