Cegid Meta4 Hr
5 CVEs affecting Cegid Meta4 Hr. Latest disclosed: 2024-03-19. Critical: 1, High: 2.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-2636 | Critical | 9.0 | 2024-03-19 | An Unrestricted Upload of File vulnerability has been found on Cegid Meta4 HR, that allows an attacker to upload malicios files to the server via '/config/esp… |
CVE-2024-2632 | High | 7.5 | 2024-03-19 | A Information Exposure Vulnerability has been found on Meta4 HR. This vulnerability allows an attacker to obtain a lot of information about the application suc… |
CVE-2024-2635 | High | 7.3 | 2024-03-19 | The configuration pages available are not intended to be placed on an Internet facing web server, as they expose file paths to the client, who can be an attac… |
CVE-2024-2634 | Medium | 6.1 | 2024-03-19 | A Cross-Site Scripting Vulnerability has been found on Meta4 HR affecting version 819.001.022 and earlier. The endpoint '/sse_generico/generico_login.jsp' is v… |
CVE-2024-2633 | Medium | 6.1 | 2024-03-19 | A Cross-Site Scripting Vulnerability has been found on Meta4 HR affecting version 819.001.022 and earlier. The endpoint '/sitetest/english/dumpenv.jsp' is vuln… |