progress

261 tracked vulnerabilities.

CVE-2019-7215 MEDIUM
Progress Sitefinity 10.1.6536 - Info Disclosure
Jun 06, 2019
CVSS 6.5
EPSS 0.01
CVE-2019-12097 HIGH
Telerik Fiddler <5.0.20182.28034 - Code Injection
Jun 03, 2019
CVSS 7.8
EPSS 0.01
CVE-2018-17060 MEDIUM
Telerik Extensions for ASP.NET MVC - Info Disclosure
Oct 08, 2018
CVSS 5.3
EPSS 0.01
CVE-2018-17054 MEDIUM
Progress Sitefinity CMS <11.0 - XSS
Oct 03, 2018
CVSS 6.1
EPSS 0.01
CVE-2018-17053 MEDIUM
Progress Sitefinity CMS <11.0 - XSS
Oct 03, 2018
CVSS 6.1
EPSS 0.01
CVE-2018-17056 MEDIUM
ServiceStack in Progress Sitefinity CMS <11.0 - XSS
Sep 28, 2018
CVSS 6.1
EPSS 0.01
CVE-2018-17055 HIGH
Progress Sitefinity CMS <11.0 - File Upload
Sep 28, 2018
CVSS 7.5
EPSS 0.01
CVE-2018-14037 MEDIUM
Progress Kendo UI Editor v2018.1.221 - XSS
Sep 28, 2018
CVSS 6.1
EPSS 0.01
CVE-2018-8939 CRITICAL
WhatsUp Gold < 18.0 - Server-Side Request Forgery via NmAPI.exe
May 01, 2018
CVSS 9.8
EPSS 0.01
CVE-2018-8938 CRITICAL
Ipswitch WhatsUp Gold < 18.0 - Remote Code Execution via SNMP MIB File Injection
May 01, 2018
CVSS 9.8
EPSS 0.02
CVE-2018-5778 CRITICAL
Ipswitch WhatsUp Gold <17.1.1 - SQL Injection
Jan 24, 2018
CVSS 9.8
EPSS 0.01
CVE-2018-5777 CRITICAL
Ipswitch WhatsUp Gold <17.1.1 - RCE
Jan 24, 2018
CVSS 9.8
EPSS 0.02
CVE-2017-18639 MEDIUM
Progress Sitefinity CMS <10.1 - XSS
Nov 06, 2019
CVSS 6.1
EPSS 0.01
CVE-2017-18179 HIGH
Progress Sitefinity 9.1 - Improper Authentication via Non-Expiring Access Token
Feb 12, 2018
CVSS 8.8
EPSS 0.03
CVE-2017-18178 MEDIUM
Progress Sitefinity 9.1 - Authenticated Open Redirect via %40 Syntax
Feb 12, 2018
CVSS 6.1
EPSS 0.02
CVE-2017-18177 MEDIUM
Progress Sitefinity 9.1 - Stored Cross-Site Scripting via User Profile Fields
Feb 12, 2018
CVSS 5.4
EPSS 0.01
CVE-2017-18176 MEDIUM
Progress Sitefinity 9.1 - Stored Cross-Site Scripting via HTML File Upload
Feb 12, 2018
CVSS 5.4
EPSS 0.01
CVE-2017-18175 MEDIUM
Progress Sitefinity 9.1 - Cross-Site Scripting via Content Management Template Configuration
Feb 12, 2018
CVSS 5.4
EPSS 0.01
CVE-2017-15883 CRITICAL
Progress Sitefinity 5.1-10.x - Authentication Bypass via Weak Cryptography
Jan 08, 2018
CVSS 9.8
EPSS 0.02
CVE-2017-11357 CRITICAL KEV
Telerik UI for ASP.NET AJAX < 2020.1.114 - Unrestricted File Upload via RadAsyncUpload
Aug 23, 2017
CVSS 9.8
EPSS 0.76
CVE-2017-1000026 HIGH
Chef Software's mixlib-archive <0.3.0 - Path Traversal
Jul 17, 2017
CVSS 7.5
EPSS 0.02
CVE-2017-9248 CRITICAL KEV
Telerik UI <R2 2017 SP1-10.0.6412.0 - MachineKey Leak
Jul 03, 2017
CVSS 9.8
EPSS 0.75
CVE-2017-9140 MEDIUM NUCLEI
Telerik Report Viewer <R1 2017 SP2 - XSS
May 22, 2017
CVSS 6.1
EPSS 0.10
CVE-2016-1000000 HIGH
Ipswitch WhatsUp Gold 16.4.1 - SQL Injection
Oct 06, 2016
CVSS 8.8
EPSS 0.01
CVE-2015-9245 CRITICAL
Progress OpenEdge 10.2x and 11.x - Unauthenticated Remote Code Execution via Java RMI Class Loader
Oct 31, 2017
CVSS 9.8
EPSS 0.02