Filtered by vendor Primetek
Subscribe
Total
2 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2020-10544 | 1 Primetek | 1 Primefaces | 2020-03-18 | 4.3 MEDIUM | 6.1 MEDIUM |
An XSS issue was discovered in tooltip/tooltip.js in PrimeTek PrimeFaces 7.0.11. In a web application using PrimeFaces, an attacker can provide JavaScript code in an input field whose data is later used as a tooltip title without any input validation. | |||||
CVE-2017-1000486 | 1 Primetek | 1 Primefaces | 2018-01-24 | 7.5 HIGH | 9.8 CRITICAL |
Primetek Primefaces 5.x is vulnerable to a weak encryption flaw resulting in remote code execution |