CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 1CVE-2023-39559
https://notcve.org/view.php?id=CVE-2023-39559
AudimexEE 15.0 was discovered to contain a full path disclosure vulnerability. Se ha descubierto que AudimexEE v15.0 contiene una vulnerabilidad de divulgación de ruta completa. • https://en.web-audimex.com https://github.com/CapgeminiCisRedTeam/Disclosure/blob/main/CVE%20PoC/CVE-2023-39559.md • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 1CVE-2023-39558
https://notcve.org/view.php?id=CVE-2023-39558
AudimexEE v15.0 was discovered to contain multiple reflected cross-site scripting (XSS) vulnerabilities via the Show Kai Data component. • https://en.web-audimex.com https://github.com/CapgeminiCisRedTeam/Disclosure/blob/main/CVE%20PoC/CVE-2023-39558.md • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •