matera banco CVE Vulnerabilities (6)

CVEs: 6 CPE versions: View versions table

Summary

This page lists publicly disclosed CVE vulnerabilities affecting matera banco (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.

Showing 16 of 6 CVEs
«« First « Prev Page 1 / 1 Next »
CVE Summary Source Max CVSS EPSS % Published Updated
CVE-2018-14929 Matera Banco 1.0.0 is vulnerable to multiple reflected XSS, as demonstrated by the /contingency/web/index.jsp (aka home page) url parameter. [email protected] 6.1 0.66% 2018-08-03 2026-06-16
CVE-2018-14928 /contingency/servlet/ServletFileDownload executes as root and provides unauthenticated access to files via the file parameter. [email protected] 7.5 1.66% 2018-08-03 2026-06-16
CVE-2018-14927 Matera Banco 1.0.0 is vulnerable to path traversal (allowing access to system files outside the default application folder) via the /contingency/servlet/ServletFileDownload file parameter, related to /contingency/web/receiptQuery/receiptDisplay.jsp. [email protected] 5.3 1.48% 2018-08-03 2026-06-16
CVE-2018-14926 Matera Banco 1.0.0 allows CSRF, as demonstrated by a /contingency/web/messageSend/messageSendHandler.jsp request. [email protected] 8.8 0.58% 2018-08-03 2026-06-16
CVE-2018-14925 Matera Banco 1.0.0 mishandles Java errors in the backend, as demonstrated by a stack trace revealing use of net.sf.acegisecurity components. [email protected] 9.8 1.54% 2018-08-03 2026-06-16
CVE-2018-14924 Matera Banco 1.0.0 is vulnerable to multiple stored XSS, as demonstrated by the sca/privilegio/consultarUsuario.jsf "Nome Completo" (aka user fullname) field. [email protected] 6.1 0.80% 2018-08-03 2026-06-16
«« First « Prev Page 1 / 1 Next »
cvelogic Threat Intelligence