← Back

Descor

descor

3 CVEs • 2 products

Products (2)

Click to collapse
Toggle
Infocad
infocad
2 CVEs
Infocad Fm
infocad_fm
1 CVE

CVEs (3)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2025-26853
1Descor
1Infocad
Apr 23, 2025
Mar 20, 2025
N/A· v4
9.8 CRITICAL· v3
N/A· v2
DESCOR INFOCAD 3.5.1 and before and fixed in v.3.5.2.0 has a broken authorization schema.
CVE-2025-26852
1Descor
1Infocad
Apr 23, 2025
Mar 20, 2025
N/A· v4
9.8 CRITICAL· v3
N/A· v2
DESCOR INFOCAD 3.5.1 and before and fixed in v.3.5.2.0 allows SQL Injection.
CVE-2018-13789
1Descor
1Infocad Fm
Nov 21, 2024
Oct 10, 2018
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
An issue was discovered in Descor Infocad FM before 3.1.0.0. An unauthenticated web service allows the retrieval of files on the web server and on reachable SMB servers.