Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
archerirm archer vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2023-32759
An issue in Archer Platform before v.6.13 and fixed in 6.12.0.6 and 6.13.0 allows an authenticated malicious user to obtain sensitive information via a crafted URL.
Archerirm Archer
6.5
CVSSv3
CVE-2023-32760
An issue in Archer Platform before v.6.13 fixed in v.6.12.0.6 and v.6.13.0 allows an authenticated malicious user to obtain sensitive information via API calls related to data feeds and data publication.
Archerirm Archer
8
CVSSv3
CVE-2023-32761
Cross Site Request Forgery (CSRF) vulnerability in Archer Platform before v.6.13 and fixed in v.6.12.0.6 and v.6.13.0 allows an authenticated malicious user to execute arbitrary code via a crafted request.
Archerirm Archer
5.4
CVSSv3
CVE-2023-30639
Archer Platform 6.8 prior to 6.12 P6 HF1 (6.12.0.6.1) contains a stored XSS vulnerability. A remote authenticated malicious Archer user could potentially exploit this vulnerability to store malicious HTML or JavaScript code in a trusted application data store. 6.11.P4 (6.11.0.4) ...
Archerirm Archer
6.5
CVSSv3
CVE-2023-45357
Archer Platform 6.x prior to 6.13 P2 HF2 (6.13.0.2.2) contains a sensitive information disclosure vulnerability. An authenticated attacker could potentially obtain access to sensitive information via a popup warning message. 6.14 (6.14.0) is also a fixed release.
Archerirm Archer
5.4
CVSSv3
CVE-2023-45358
Archer Platform 6.x prior to 6.13 P2 HF2 (6.13.0.2.2) contains a stored cross-site scripting (XSS) vulnerability. A remote authenticated malicious Archer user could potentially exploit this vulnerability to store malicious HTML or JavaScript code in a trusted application data sto...
Archerirm Archer
5.4
CVSSv3
CVE-2023-48642
Archer Platform 6.x prior to 6.13 P2 (6.13.0.2) contains an authenticated HTML content injection vulnerability. A remote authenticated malicious Archer user could potentially exploit this to store malicious HTML code in a trusted application data store. When victim users access t...
Archerirm Archer
8.8
CVSSv3
CVE-2023-48641
Archer Platform 6.x prior to 6.14 P1 HF2 (6.14.0.1.2) contains an insecure direct object reference vulnerability. An authenticated malicious user in a multi-instance installation could potentially exploit this vulnerability by manipulating application resource references in user ...
Archerirm Archer
5.4
CVSSv3
CVE-2023-37223
Cross Site Scripting (XSS) vulnerability in Archer Platform before v.6.13 and fixed in v.6.12.0.6 and v.6.13.0 allows a remote authenticated malicious user to execute arbitrary code via a crafted malicious script.
Archerirm Archer
5.5
CVSSv3
CVE-2023-37224
An issue in Archer Platform before v.6.13 fixed in v.6.12.0.6 and v.6.13.0 allows an authenticated malicious user to obtain sensitive information via the log files.
Archerirm Archer
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started