Tessi: community verdicts
4 notable / known-exploited Tessi CVEs the community has triaged.
- CVE-2024-37673MED 5.4EPSS 1%
Cross Site Scripting vulnerability in Tessi Docubase Document Management product 5.x allows a remote attacker to execute arbitrary code via the filename parameter.
- CVE-2024-37672MED 5.4EPSS 1%
Cross Site Scripting vulnerability in Tessi Docubase Document Management product 5.x allows a remote attacker to execute arbitrary code via the idactivity parameter.
- CVE-2024-37671MED 5.4EPSS 1%
Cross Site Scripting vulnerability in Tessi Docubase Document Management product 5.x allows a remote attacker to execute arbitrary code via the page parameter.
- CVE-2024-37675MED 5.4EPSS 1%
Cross Site Scripting vulnerability in Tessi Docubase Document Management product 5.x allows a remote attacker to execute arbitrary code via the parameter "sectionContent" related to the functionality of adding notes to an uploaded file.