progress
261 tracked vulnerabilities.
CVE-2019-7215
MEDIUM
Progress Sitefinity 10.1.6536 - Info Disclosure
Jun 06, 2019
CVSS 6.5
EPSS 0.01
CVE-2019-12097
HIGH
Telerik Fiddler <5.0.20182.28034 - Code Injection
Jun 03, 2019
CVSS 7.8
EPSS 0.01
CVE-2018-17060
MEDIUM
Telerik Extensions for ASP.NET MVC - Info Disclosure
Oct 08, 2018
CVSS 5.3
EPSS 0.01
CVE-2018-17054
MEDIUM
Progress Sitefinity CMS <11.0 - XSS
Oct 03, 2018
CVSS 6.1
EPSS 0.01
CVE-2018-17053
MEDIUM
Progress Sitefinity CMS <11.0 - XSS
Oct 03, 2018
CVSS 6.1
EPSS 0.01
CVE-2018-17056
MEDIUM
ServiceStack in Progress Sitefinity CMS <11.0 - XSS
Sep 28, 2018
CVSS 6.1
EPSS 0.01
CVE-2018-17055
HIGH
Progress Sitefinity CMS <11.0 - File Upload
Sep 28, 2018
CVSS 7.5
EPSS 0.01
CVE-2018-14037
MEDIUM
Progress Kendo UI Editor v2018.1.221 - XSS
Sep 28, 2018
CVSS 6.1
EPSS 0.01
CVE-2018-8939
CRITICAL
WhatsUp Gold < 18.0 - Server-Side Request Forgery via NmAPI.exe
May 01, 2018
CVSS 9.8
EPSS 0.01
CVE-2018-8938
CRITICAL
Ipswitch WhatsUp Gold < 18.0 - Remote Code Execution via SNMP MIB File Injection
May 01, 2018
CVSS 9.8
EPSS 0.02
CVE-2018-5778
CRITICAL
Ipswitch WhatsUp Gold <17.1.1 - SQL Injection
Jan 24, 2018
CVSS 9.8
EPSS 0.01
CVE-2018-5777
CRITICAL
Ipswitch WhatsUp Gold <17.1.1 - RCE
Jan 24, 2018
CVSS 9.8
EPSS 0.02
CVE-2017-18639
MEDIUM
Progress Sitefinity CMS <10.1 - XSS
Nov 06, 2019
CVSS 6.1
EPSS 0.01
CVE-2017-18179
HIGH
Progress Sitefinity 9.1 - Improper Authentication via Non-Expiring Access Token
Feb 12, 2018
CVSS 8.8
EPSS 0.03
CVE-2017-18178
MEDIUM
Progress Sitefinity 9.1 - Authenticated Open Redirect via %40 Syntax
Feb 12, 2018
CVSS 6.1
EPSS 0.02
CVE-2017-18177
MEDIUM
Progress Sitefinity 9.1 - Stored Cross-Site Scripting via User Profile Fields
Feb 12, 2018
CVSS 5.4
EPSS 0.01
CVE-2017-18176
MEDIUM
Progress Sitefinity 9.1 - Stored Cross-Site Scripting via HTML File Upload
Feb 12, 2018
CVSS 5.4
EPSS 0.01
CVE-2017-18175
MEDIUM
Progress Sitefinity 9.1 - Cross-Site Scripting via Content Management Template Configuration
Feb 12, 2018
CVSS 5.4
EPSS 0.01
CVE-2017-15883
CRITICAL
Progress Sitefinity 5.1-10.x - Authentication Bypass via Weak Cryptography
Jan 08, 2018
CVSS 9.8
EPSS 0.02
CVE-2017-11357
CRITICAL
KEV
Telerik UI for ASP.NET AJAX < 2020.1.114 - Unrestricted File Upload via RadAsyncUpload
Aug 23, 2017
CVSS 9.8
EPSS 0.76
CVE-2017-1000026
HIGH
Chef Software's mixlib-archive <0.3.0 - Path Traversal
Jul 17, 2017
CVSS 7.5
EPSS 0.02
CVE-2017-9248
CRITICAL
KEV
Telerik UI <R2 2017 SP1-10.0.6412.0 - MachineKey Leak
Jul 03, 2017
CVSS 9.8
EPSS 0.75
CVE-2017-9140
MEDIUM
NUCLEI
Telerik Report Viewer <R1 2017 SP2 - XSS
May 22, 2017
CVSS 6.1
EPSS 0.10
CVE-2016-1000000
HIGH
Ipswitch WhatsUp Gold 16.4.1 - SQL Injection
Oct 06, 2016
CVSS 8.8
EPSS 0.01
CVE-2015-9245
CRITICAL
Progress OpenEdge 10.2x and 11.x - Unauthenticated Remote Code Execution via Java RMI Class Loader
Oct 31, 2017
CVSS 9.8
EPSS 0.02
Products
whatsup_gold 56
moveit_transfer 33
ws_ftp_server 28
sitefinity 24
loadmaster 21
telerik_reporting 14
openedge 12
MOVEit Transfer 9
moveit_automation 8
telerik_ui_for_asp.net_ajax 8
ecs_connection_manager 7
multi-tenant_loadmaster 7
telerik_report_server 7
connection_manager_for_objectscale 6
progress 5
sitefinity_cms 5
flowmon 4
telerik_document_processing_libraries 3
telerik_ui_for_winforms 3
DataDirect Connect for JDBC Autonomous REST Connector 2
DataDirect Connect for JDBC for Amazon Redshift 2
DataDirect Connect for JDBC for Apache Cassandra 2
DataDirect Connect for JDBC for Apache Impala 2
DataDirect Connect for JDBC for Apache SparkSQL 2
DataDirect Connect for JDBC for DB2 2
DataDirect Connect for JDBC for Google Analytics 4 2
DataDirect Connect for JDBC for Google BigQuery 2
DataDirect Connect for JDBC for Greenplum 2
DataDirect Connect for JDBC for Hive 2
DataDirect Connect for JDBC for Informix 2
Quick Filters