| Max CVSS | 6.8 | Min CVSS | 3.5 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2018-8979 | 6.8 |
Open-AudIT Professional 2.1 has CSRF, as demonstrated by modifying a user account or inserting XSS sequences via the credentials URI.
|
24-08-2020 - 17:37 | 25-03-2018 - 19:29 | |
| CVE-2018-8903 | 3.5 |
Open-AudIT Professional 2.1 allows XSS via the Name or Description field on the Credentials screen.
|
18-04-2018 - 01:32 | 22-03-2018 - 21:29 |