Agilepoint

agilepoint

4 CVEs • 1 product

Products (1)

Click to collapse

Toggle

CVEs (4)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2023-31179 1Agilepoint 1Agilepoint Nx Jun 17, 2026 May 8, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 AgilePoint NX v8.0 SU2.2 & SU2.3 - Path traversal - Vulnerability allows path traversal and downloading files from the server, by an unspecified request.
CVE-2023-31178 1Agilepoint 1Agilepoint Nx Jun 17, 2026 May 8, 2023 N/A· v4 9.1 CRITICAL· v3 N/A· v2 AgilePoint NX v8.0 SU2.2 & SU2.3 – Arbitrary File Delete Vulnerability allows arbitrary file deletion, by an unspecified request.
CVE-2023-24507 1Agilepoint 1Agilepoint Nx Jun 17, 2026 May 8, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 AgilePoint NX v8.0 SU2.2 & SU2.3 – Insecure File Upload - Vulnerability allows insecure file upload, by an unspecified request.
CVE-2022-30619 1Agilepoint 1Agilepoint Nx Jun 17, 2026 Jul 6, 2022 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 Editable SQL Queries behind Base64 encoding sending from the Client-Side to The Server-Side for a particular API used in legacy Work Center module. He attack is available for any authenticated user, in any kind of rule....Show more Editable SQL Queries behind Base64 encoding sending from the Client-Side to The Server-Side for a particular API used in legacy Work Center module. He attack is available for any authenticated user, in any kind of rule. under the function : /AgilePointServer/Extension/FetchUsingEncodedData in the parameter: EncodedDataShow less