← Back

Precurio

precurio

2 CVEs • 2 products

Products (2)

Click to collapse
Toggle
Precurio
precurio
1 CVE
Intranet Portal
intranet_portal
1 CVE

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2026-32989
1Precurio
1Intranet Portal
Apr 16, 2026
Mar 20, 2026
8.6 HIGH· v4
8.8 HIGH· v3
N/A· v2
Precurio Intranet Portal 4.4 contains a cross-site request forgery vulnerability that allows attackers to induce authenticated users to submit crafted requests to a profile update endpoint handling file uploads. Attacker...Show more
Precurio Intranet Portal 4.4 contains a cross-site request forgery vulnerability that allows attackers to induce authenticated users to submit crafted requests to a profile update endpoint handling file uploads. Attackers can exploit this to upload executable files to web-accessible locations, leading to arbitrary code execution in the context of the web server.Show less
CVE-2016-10759
1Precurio
1Precurio
Nov 21, 2024
May 24, 2019
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
The Xinha plugin in Precurio 2.1 allows Directory Traversal, with resultant arbitrary code execution, via ExtendedFileManager/Classes/ExtendedFileManager.php because ExtendedFileManager can be used to rename the .htacces...Show more
The Xinha plugin in Precurio 2.1 allows Directory Traversal, with resultant arbitrary code execution, via ExtendedFileManager/Classes/ExtendedFileManager.php because ExtendedFileManager can be used to rename the .htaccess file that blocks .php uploads.Show less