Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
pleasanter pleasanter vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv3
CVE-2023-30758
Cross-site scripting vulnerability in Pleasanter 1.3.38.1 and previous versions allows a remote authenticated malicious user to inject an arbitrary script.
Pleasanter Pleasanter
6.5
CVSSv3
CVE-2023-32608
Directory traversal vulnerability in Pleasanter (Community Edition and Enterprise Edition) 1.3.39.2 and previous versions versions allows a remote authenticated malicious user to alter an arbitrary file on the server.
Pleasanter Pleasanter
6.1
CVSSv3
CVE-2023-46688
Open redirect vulnerability in Pleasanter 1.3.47.0 and previous versions allows a remote unauthenticated malicious user to redirect users to arbitrary web sites via a specially crafted URL.
Pleasanter Pleasanter
5.4
CVSSv3
CVE-2023-32607
Stored cross-site scripting vulnerability in Pleasanter (Community Edition and Enterprise Edition) 1.3.39.2 and previous versions versions allows a remote authenticated malicious user to inject an arbitrary script.
Pleasanter Pleasanter
5.4
CVSSv3
CVE-2023-34439
Pleasanter 1.3.47.0 and previous versions contains a stored cross-site scripting vulnerability. If this vulnerability is exploited, an arbitrary script may be executed on the user's web browser.
Pleasanter Pleasanter
4.3
CVSSv3
CVE-2023-45210
Pleasanter 1.3.47.0 and previous versions contains an improper access control vulnerability, which may allow a remote authenticated malicious user to view the temporary files uploaded by other users who are not permitted to access.
Pleasanter Pleasanter
NA
CVE-2024-21584
Pleasanter 1.3.49.0 and previous versions contains a cross-site scripting vulnerability. If an attacker tricks the user to access the product with a specially crafted URL and perform a specific operation, an arbitrary script may be executed on the web browser of the user.
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started