Netcommons : Security Vulnerabilities, CVEs,
Cross-site scripting vulnerability in NetCommons 3.2.2 and earlier (NetCommons3.x) allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Max CVSS
6.1
EPSS Score
0.12%
Published
2019-12-26
Updated
2020-01-03
NetCommons 2.4.2.1 and earlier allows remote authenticated secretariat (aka CLERK) users to gain privileges by creating a SYSTEM_ADMIN account.
Max CVSS
9.0
EPSS Score
0.31%
Published
2016-06-19
Updated
2016-06-21
Cross-site scripting (XSS) vulnerability in NetCommons before 1.0.11, and 1.1.x before 1.1.2, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2006-4165.
Max CVSS
4.3
EPSS Score
0.27%
Published
2007-11-14
Updated
2017-07-29
Cross-site scripting (XSS) vulnerability in NetCommons 1.0.8 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Max CVSS
6.8
EPSS Score
0.41%
Published
2006-08-16
Updated
2017-07-20
4 vulnerabilities found