progress

244 tracked vulnerabilities.

CVE-2021-31827 HIGH
Progress MOVEit Transfer < 2021.0 - Authenticated SQL Injection in SILHuman.vb
May 18, 2021
CVSS 8.8
EPSS 0.00
CVE-2021-28141 CRITICAL
Progress Telerik UI for ASP.NET AJAX 2021.1.224 - Auth Bypass
Mar 11, 2021
CVSS 9.8
EPSS 0.01
CVE-2020-28647 MEDIUM
Progress MOVEit Transfer < 2020.1 - Stored Cross-Site Scripting
Nov 17, 2020
CVSS 5.4
EPSS 0.00
CVE-2020-12677 MEDIUM
Progress MOVEit Automation Web Admin <2018.0.3-2019.2.2 - XSS
May 14, 2020
CVSS 6.1
EPSS 0.00
CVE-2020-8612 CRITICAL
MOVEit Transfer <2019.1.4-2019.2.1 - Authenticated XSS
Feb 14, 2020
CVSS 9.0
EPSS 0.00
CVE-2020-8611 HIGH
MOVEit Transfer <2019.1.4-2019.2.1 - SQL Injection
Feb 14, 2020
CVSS 8.8
EPSS 0.00
CVE-2019-19790 CRITICAL
Telerik UI for ASP.NET AJAX RadChart - Path Traversal and Arbitrary File Read/Delete via Image Handler
Dec 13, 2019
CVSS 9.8
EPSS 0.00
CVE-2019-17392 CRITICAL
Progress Sitefinity 9.1-9.1.6185 - Weak Password Recovery Mechanism via HTTP Host Header
Nov 26, 2019
CVSS 9.8
EPSS 0.00
CVE-2019-12143 MEDIUM
Progress ipswitch WS_FTP Server <8.6.1 - Path Traversal
Jun 11, 2019
CVSS 5.3
EPSS 0.00
CVE-2019-7215 MEDIUM
Progress Sitefinity 10.1.6536 - Info Disclosure
Jun 06, 2019
CVSS 6.5
EPSS 0.00
CVE-2019-12097 HIGH
Telerik Fiddler <5.0.20182.28034 - Code Injection
Jun 03, 2019
CVSS 7.8
EPSS 0.00
CVE-2018-17060 MEDIUM
Telerik Extensions for ASP.NET MVC - Info Disclosure
Oct 08, 2018
CVSS 5.3
EPSS 0.00
CVE-2018-17054 MEDIUM
Progress Sitefinity CMS <11.0 - XSS
Oct 03, 2018
CVSS 6.1
EPSS 0.00
CVE-2018-17053 MEDIUM
Progress Sitefinity CMS <11.0 - XSS
Oct 03, 2018
CVSS 6.1
EPSS 0.00
CVE-2018-17056 MEDIUM
ServiceStack in Progress Sitefinity CMS <11.0 - XSS
Sep 28, 2018
CVSS 6.1
EPSS 0.00
CVE-2018-17055 HIGH
Progress Sitefinity CMS <11.0 - File Upload
Sep 28, 2018
CVSS 7.5
EPSS 0.00
CVE-2018-14037 MEDIUM
Progress Kendo UI Editor v2018.1.221 - XSS
Sep 28, 2018
CVSS 6.1
EPSS 0.00
CVE-2018-8939 CRITICAL
WhatsUp Gold < 18.0 - Server-Side Request Forgery via NmAPI.exe
May 01, 2018
CVSS 9.8
EPSS 0.00
CVE-2018-8938 CRITICAL
Ipswitch WhatsUp Gold < 18.0 - Remote Code Execution via SNMP MIB File Injection
May 01, 2018
CVSS 9.8
EPSS 0.00
CVE-2018-5778 CRITICAL
Ipswitch WhatsUp Gold <17.1.1 - SQL Injection
Jan 24, 2018
CVSS 9.8
EPSS 0.00
CVE-2018-5777 CRITICAL
Ipswitch WhatsUp Gold <17.1.1 - RCE
Jan 24, 2018
CVSS 9.8
EPSS 0.00
CVE-2017-18639 MEDIUM
Progress Sitefinity CMS <10.1 - XSS
Nov 06, 2019
CVSS 6.1
EPSS 0.00
CVE-2017-18179 HIGH
Progress Sitefinity 9.1 - Improper Authentication via Non-Expiring Access Token
Feb 12, 2018
CVSS 8.8
EPSS 0.00
CVE-2017-18178 MEDIUM
Progress Sitefinity 9.1 - Authenticated Open Redirect via %40 Syntax
Feb 12, 2018
CVSS 6.1
EPSS 0.00
CVE-2017-18177 MEDIUM
Progress Sitefinity 9.1 - Stored Cross-Site Scripting via User Profile Fields
Feb 12, 2018
CVSS 5.4
EPSS 0.00
Products
whatsup_gold 56 ws_ftp_server 28 moveit_transfer 25 loadmaster 19 sitefinity 19 telerik_reporting 14 openedge 12 moveit_automation 8 telerik_ui_for_asp.net_ajax 8 multi-tenant_loadmaster 7 telerik_report_server 7 ecs_connection_manager 6 connection_manager_for_objectscale 5 progress 5 sitefinity_cms 5 flowmon 3 telerik_document_processing_libraries 3 telerik_ui_for_winforms 3 DataDirect Connect for JDBC Autonomous REST Connector 2 DataDirect Connect for JDBC for Amazon Redshift 2 DataDirect Connect for JDBC for Apache Cassandra 2 DataDirect Connect for JDBC for Apache Impala 2 DataDirect Connect for JDBC for Apache SparkSQL 2 DataDirect Connect for JDBC for DB2 2 DataDirect Connect for JDBC for Google Analytics 4 2 DataDirect Connect for JDBC for Google BigQuery 2 DataDirect Connect for JDBC for Greenplum 2 DataDirect Connect for JDBC for Hive 2 DataDirect Connect for JDBC for Informix 2 DataDirect Connect for JDBC for Microsoft Dynamics 365 2
Quick Filters
Critical CVEs With Exploits In CISA KEV