← Back

Storegrid

storegrid

Vendor: Vembu • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2014-10079
1Vembu
1Storegrid
Nov 21, 2024
Feb 23, 2019
N/A· v4
5.3 MEDIUM· v3
5.0 MEDIUM· v2
In Vembu StoreGrid 4.4.x, the front page of the server web interface leaks the private IP address in the "ipaddress" hidden form value of the HTML source code, which is disclosed because of incorrect processing of an ind...Show more
In Vembu StoreGrid 4.4.x, the front page of the server web interface leaks the private IP address in the "ipaddress" hidden form value of the HTML source code, which is disclosed because of incorrect processing of an index.php/ trailing slash.Show less
CVE-2014-10078
1Vembu
1Storegrid
Nov 21, 2024
Feb 23, 2019
N/A· v4
6.1 MEDIUM· v3
4.3 MEDIUM· v2
Vembu StoreGrid 4.4.x has XSS in interface/registercustomer/onlineregsuccess.php, interface/registerreseller/onlineregfailure.php, interface/registerclient/onlineregfailure.php, and interface/registercustomer/onlineregfa...Show more
Vembu StoreGrid 4.4.x has XSS in interface/registercustomer/onlineregsuccess.php, interface/registerreseller/onlineregfailure.php, interface/registerclient/onlineregfailure.php, and interface/registercustomer/onlineregfailure.php.Show less