Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
efstechnology autoform pdm archive 6.920 vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv2
CVE-2012-1827
The web service in AutoFORM PDM Archive prior to 7.1 does not have authorization requirements, which allows remote authenticated users to perform database operations via a SOAP request, as demonstrated by the initializeQueryDatabase2 request.
Efstechnology Autoform Pdm Archive
Efstechnology Autoform Pdm Archive 6.920
6.5
CVSSv2
CVE-2012-1828
The administrative functions in AutoFORM PDM Archive prior to 7.1 do not have authorization requirements, which allows remote authenticated users to perform administrative actions by leveraging knowledge of a hidden function, as demonstrated by the password-change function.
Efstechnology Autoform Pdm Archive
Efstechnology Autoform Pdm Archive 6.920
3.5
CVSSv2
CVE-2012-1829
Multiple cross-site scripting (XSS) vulnerabilities in AutoFORM PDM Archive prior to 6.920 allow remote authenticated users to inject arbitrary web script or HTML via unspecified fields.
Efstechnology Autoform Pdm Archive
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started