Personal Management System

personal-management-system

8 CVEs • 1 product

Products (1)

Click to collapse

Toggle

Personal Management System

personal_management_system

CVEs (8)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2025-28355 1Personal Management System 1Personal Management System Jun 20, 2025 Apr 18, 2025 N/A· v4 4.7 MEDIUM· v3 N/A· v2 Volmarg Personal Management System 1.4.65 is vulnerable to Cross Site Request Forgery (CSRF) allowing attackers to execute arbitrary code and obtain sensitive information via the SameSite cookie attribute defaults value...Show more Volmarg Personal Management System 1.4.65 is vulnerable to Cross Site Request Forgery (CSRF) allowing attackers to execute arbitrary code and obtain sensitive information via the SameSite cookie attribute defaults value set to noneShow less
CVE-2025-29456 1Personal Management System 1Personal Management System Apr 22, 2025 Apr 17, 2025 N/A· v4 6.5 MEDIUM· v3 N/A· v2 An issue in personal-management-system Personal Management System 1.4.65 allows a remote attacker to obtain sensitive information via the create Notes function.
CVE-2025-29453 1Personal Management System 1Personal Management System Apr 22, 2025 Apr 17, 2025 N/A· v4 6.5 MEDIUM· v3 N/A· v2 An issue in personal-management-system Personal Management System 1.4.65 allows a remote attacker to obtain sensitive information via the my-contacts-settings component.
CVE-2025-29455 1Personal Management System 1Personal Management System Apr 22, 2025 Apr 17, 2025 N/A· v4 6.5 MEDIUM· v3 N/A· v2 An issue in personal-management-system Personal Management System 1.4.65 allows a remote attacker to obtain sensitive information via the Travel Ideas" function.
CVE-2025-29454 1Personal Management System 1Personal Management System Apr 22, 2025 Apr 17, 2025 N/A· v4 6.5 MEDIUM· v3 N/A· v2 An issue in personal-management-system Personal Management System 1.4.65 allows a remote attacker to obtain sensitive information via the Upload function.
CVE-2024-29319 1Personal Management System 1Personal Management System Nov 21, 2024 Jul 5, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Volmarg Personal Management System 1.4.64 is vulnerable to SSRF (Server Side Request Forgery) via uploading a SVG file. The server can make unintended HTTP and DNS requests to a server that the attacker controls.
CVE-2024-29318 1Personal Management System 1Personal Management System Mar 13, 2025 Jul 5, 2024 N/A· v4 5.4 MEDIUM· v3 N/A· v2 Volmarg Personal Management System 1.4.64 is vulnerable to stored cross site scripting (XSS) via upload of a SVG file with embedded javascript code.
CVE-2023-43838 1Personal Management System 1Personal Management System Nov 21, 2024 Oct 4, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 An arbitrary file upload vulnerability in Personal Management System v1.4.64 allows attackers to execute arbitrary code via uploading a crafted SVG file into a user profile's avatar.