Outsystems Outsystems
4 CVEs affecting Outsystems Outsystems. Latest disclosed: 2021-08-31. Critical: 0, High: 2.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2021-29357 | High | 8.6 | 2021-04-12 | The ECT Provider component in OutSystems Platform Server 10 before 10.0.1104.0 and 11 before 11.9.0 (and LifeTime management console before 11.7.0) allows SSRF… |
CVE-2020-29441 | High | 7.2 | 2020-11-30 | An issue was discovered in the Upload Widget in OutSystems Platform 10 before 10.0.1019.0. An unauthenticated attacker can upload arbitrary files. In some case… |
CVE-2019-12273 | Medium | 6.5 | 2019-12-31 | OutSystems Platform 10 through 11 allows ImageResourceDetail.aspx CSRF for content modifications and file uploads. NOTE: The product is self-hosted by the cust… |
CVE-2020-13639 | Medium | 6.1 | 2021-08-31 | A stored XSS vulnerability was discovered in the ECT Provider in OutSystems before 2020-09-04, affecting generated applications. It could allow an unauthentica… |