EGroupware 17.1.20190111 Community Edition

CPE Details

EGroupware 17.1.20190111 Community Edition
egroupware
egroupware
17.1.20190111
2020-06-01
15h34 +00:00
2020-06-01
15h34 +00:00
CPE NVD
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:a:egroupware:egroupware:17.1.20190111:*:*:*:community:*:*:*

Informations

Vendor

egroupware

Product

egroupware

Version

17.1.20190111

Software Edition

community

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2024-40614 2024-07-06 22h00 +00:00 EGroupware before 23.1.20240624 mishandles an ORDER BY clause. This leads to json.php?menuaction=EGroupware\Api\Etemplate\Widget\Nextmatch::ajax_get_rows sort.id SQL injection by authenticated users for Address Book or InfoLog sorting.
9.8
Critique
CVE-2023-38328 2023-10-25 22h00 +00:00 An issue was discovered in eGroupWare 17.1.20190111. An Improper Password Storage vulnerability affects the setup panel of under setup/manageheader.php, which allows authenticated remote attackers with administrator credentials to read a cleartext database password.
4.9
Moyen