This page lists publicly disclosed CVE vulnerabilities affecting carson-saint saint_security_suite (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2020-16278 | A cross-site scripting (XSS) vulnerability in the Permissions component in SAINT Security Suite 8.0 through 9.8.20 could allow arbitrary script to run in the context of a logged-in user when the user clicks on a specially crafted link. | [email protected] | 6.1 | 0.27% | 2020-08-10 | 2024-11-21 |
| CVE-2020-16277 | An SQL injection vulnerability in the Analytics component of SAINT Security Suite 8.0 through 9.8.20 allows a remote, authenticated attacker to gain unauthorized access to the database. | [email protected] | 8.8 | 0.73% | 2020-08-10 | 2024-11-21 |
| CVE-2020-16276 | An SQL injection vulnerability in the Assets component of SAINT Security Suite 8.0 through 9.8.20 allows a remote, authenticated attacker to gain unauthorized access to the database. | [email protected] | 8.8 | 0.73% | 2020-08-10 | 2024-11-21 |
| CVE-2020-16275 | A cross-site scripting (XSS) vulnerability in the Credential Manager component in SAINT Security Suite 8.0 through 9.8.20 could allow arbitrary script to run in the context of a logged-in user when the user clicks on a specially crafted link. | [email protected] | 6.1 | 0.36% | 2020-08-10 | 2024-11-21 |