Flowring Agentflow Bpm

3 CVEs affecting Flowring Agentflow Bpm. Latest disclosed: 2022-11-10. Critical: 1, High: 2.

Top CVEs affecting Flowring Agentflow Bpm
CVESeverityScorePublishedSummary
CVE-2022-39036Critical9.82022-11-10The file upload function of Agentflow BPM has insufficient filtering for special characters in URLs. An unauthenticated remote attacker can exploit this vulner…
CVE-2022-39038High8.82022-11-10Agentflow BPM enterprise management system has improper authentication. A remote attacker with general user privilege can change the name of the user account t…
CVE-2022-39037High7.52022-11-10Agentflow BPM file download function has a path traversal vulnerability. An unauthenticated remote attacker can exploit this vulnerability to bypass authentica…