Vulnerabilities (CVE)

Filtered by vendor Fairsketch Subscribe

Filtered by product Rise Ultimate Project Manager

CVSS v3 Filter

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 3 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2017-17999	1 Fairsketch	1 Rise Ultimate Project Manager	2018-02-09	7.5 HIGH	9.8 CRITICAL
SQL injection vulnerability in RISE Ultimate Project Manager 1.9 allows remote attackers to execute arbitrary SQL commands via the search parameter to index.php/knowledge_base/get_article_suggestion/.
CVE-2017-11181	1 Fairsketch	1 Rise Ultimate Project Manager	2017-07-14	3.5 LOW	5.4 MEDIUM
In Rise Ultimate Project Manager v1.8, XSS vulnerabilities were found in the Messaging section. Subject and Message fields are vulnerable.
CVE-2017-11182	1 Fairsketch	1 Rise Ultimate Project Manager	2017-07-14	3.5 LOW	5.4 MEDIUM
In Rise Ultimate Project Manager v1.8, XSS vulnerabilities were found in the My Profile section. All input fields are vulnerable.