Total
3 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2019-15480 | 1 Domoticz | 1 Domoticz | 2019-08-26 | 3.5 LOW | 5.4 MEDIUM |
Domoticz 4.10717 has XSS via item.Name. | |||||
CVE-2019-10678 | 1 Domoticz | 1 Domoticz | 2019-05-03 | 5.0 MEDIUM | 7.5 HIGH |
Domoticz before 4.10579 neglects to categorize \n and \r as insecure argument options. | |||||
CVE-2019-10664 | 1 Domoticz | 1 Domoticz | 2019-05-03 | 7.5 HIGH | 9.8 CRITICAL |
Domoticz before 4.10578 allows SQL Injection via the idx parameter in CWebServer::GetFloorplanImage in WebServer.cpp. |