Aggregates CVE and security vulnerability intelligence across all telligent-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.
Common weakness patterns include vendor risk cross-site scripting, with potential vendor impact session compromise across vendor surface production workloads and vendor surface software deployment use cases.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2012-1903 | XSS in Telligent Community 5.6.583.20496 via a flash file and related to the allowScriptAccess parameter. | [email protected] | 5.4 | 0.21% | 2020-02-13 | 2024-11-21 |
| CVE-2018-16235 | Telligent Community 6.x, 7.x, 8.x, 9.x before 9.2.10.11796, 10.1.x before 10.1.10.11792, and 10.2.x before 10.2.3.4725 has XSS via the Feed RSS widget. | [email protected] | 6.1 | 0.38% | 2018-10-23 | 2024-11-21 |
| CVE-2014-1223 | Cross-site scripting (XSS) vulnerability in controlpanel/loading.aspx in Telligent Evolution before 6.1.19.36103, 7.x before 7.1.12.36162, 7.5.x, and 7.6.x before 7.6.7.36651 allows remote attackers to inject arbitrary web script or HTML via the msg parameter. NOTE: some of these details are obtained from third party information. | [email protected] | 4.3 | 0.36% | 2014-02-27 | 2026-04-29 |