Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
letodms project letodms vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2012-4567
Multiple cross-site scripting (XSS) vulnerabilities in LetoDMS (formerly MyDMS) prior to 3.3.8 allow remote malicious users to inject arbitrary web script or HTML via unspecified parameters in (1) inc/inc.ClassUI.php or (2) out/out.DocumentNotify.php.
Letodms Project Letodms 3.3.0
Letodms Project Letodms 3.3.1
Letodms Project Letodms 3.3.6
Letodms Project Letodms 3.3.7
Letodms Project Letodms 3.3.2
Letodms Project Letodms 3.3.4
Letodms Project Letodms 3.3.3
Letodms Project Letodms 3.3.5
6.8
CVSSv2
CVE-2012-4568
Multiple cross-site request forgery (CSRF) vulnerabilities in LetoDMS (formerly MyDMS) prior to 3.3.8 allow remote malicious users to hijack the authentication of unspecified victims via unknown vectors.
Letodms Project Letodms
4.3
CVSSv2
CVE-2012-4569
Multiple cross-site scripting (XSS) vulnerabilities in out/out.UsrMgr.php in LetoDMS (formerly MyDMS) prior to 3.3.9 allow remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Letodms Project Letodms
7.5
CVSSv2
CVE-2012-4570
SQL injection vulnerability in LetoDMS_Core/Core/inc.ClassDMS.php in LetoDMS (formerly MyDMS) prior to 3.3.8 allows remote malicious users to execute arbitrary SQL commands via unspecified vectors.
Letodms Project Letodms
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48654
CVE-2024-2757
authentication bypass
CVE-2024-3194
CVE-2024-33640
CVE-2024-21111
dos
insecure direct object reference
CVE-2024-21345
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started