← Back

Rainbowfishsoftware

rainbowfishsoftware

7 CVEs • 1 product

Products (1)

Click to collapse
Toggle
Pacsone Server
pacsone_server
7 CVEs

CVEs (7)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2020-29166
1Rainbowfishsoftware
1Pacsone Server
Jun 17, 2026
Feb 3, 2021
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
PacsOne Server (PACS Server In One Box) below 7.1.1 is affected by file read/manipulation, which can result in remote information disclosure.
CVE-2020-29165
1Rainbowfishsoftware
1Pacsone Server
Jun 17, 2026
Feb 3, 2021
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
PacsOne Server (PACS Server In One Box) below 7.1.1 is affected by incorrect access control, which can result in remotely gaining administrator privileges.
CVE-2020-29164
1Rainbowfishsoftware
1Pacsone Server
Jun 17, 2026
Feb 3, 2021
N/A· v4
6.1 MEDIUM· v3
4.3 MEDIUM· v2
PacsOne Server (PACS Server In One Box) below 7.1.1 is affected by cross-site scripting (XSS).
CVE-2020-29163
1Rainbowfishsoftware
1Pacsone Server
Jun 17, 2026
Feb 3, 2021
N/A· v4
8.8 HIGH· v3
6.5 MEDIUM· v2
PacsOne Server (PACS Server In One Box) below 7.1.1 is affected by SQL injection.
CVE-2020-12870
1Rainbowfishsoftware
1Pacsone Server
Jun 17, 2026
Sep 30, 2020
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
RainbowFish PacsOne Server 6.8.4 allows SQL injection on the username parameter in the signup page.
CVE-2020-12869
1Rainbowfishsoftware
1Pacsone Server
Jun 17, 2026
Sep 30, 2020
N/A· v4
5.4 MEDIUM· v3
3.5 LOW· v2
RainbowFish PacsOne Server 6.8.4 allows XSS.
CVE-2020-12715
1Rainbowfishsoftware
1Pacsone Server
Jun 17, 2026
Sep 30, 2020
N/A· v4
8.8 HIGH· v3
6.5 MEDIUM· v2
RainbowFish PacsOne Server 6.8.4 has Incorrect Access Control.