Filtered by vendor Znuny
Subscriptions
Total
4 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2025-26845 | 1 Znuny | 1 Znuny | 2025-05-16 | 9.8 Critical |
| An Eval Injection issue was discovered in Znuny through 7.1.3. A user with write access to the configuration file can use this to execute a command executed by the user running the backup.pl script. | ||||
| CVE-2025-26847 | 1 Znuny | 1 Znuny | 2025-05-16 | 9.1 Critical |
| An issue was discovered in Znuny before 7.1.5. When generating a support bundle, not all passwords are masked. | ||||
| CVE-2024-48938 | 1 Znuny | 1 Znuny | 2025-03-14 | 7.5 High |
| Znuny before LTS 6.5.1 through 6.5.10 and 7.0.1 through 7.0.16 allows DoS/ReDos via email. Parsing the content of emails where HTML code is copied from Microsoft Word could lead to high CPU usage and block the parsing process. | ||||
| CVE-2024-48937 | 1 Znuny | 1 Znuny | 2025-03-13 | 6.1 Medium |
| Znuny before LTS 6.5.1 through 6.5.10 and 7.0.1 through 7.0.16 allows XSS. JavaScript code in the short description of the SLA field in Activity Dialogues is executed. | ||||
Page 1 of 1.