cmoncrook/Security-Advisories

Releases0

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2026-29969 ↗	Mar 26, 2026Thursday, 26 March 2026, 19:16	6.1 MEDIUM	—
A cross-site scripting (XSS) vulnerability in the wff_cols_pref.css.aspx endpoint of staffwiki v7.0.1.19219 allows attackers to execute arbitrary Javascript in the context of the user's browser via a crafted HTTP request.
CVE-2025-29267 ↗	Jul 8, 2025Tuesday, 8 July 2025, 15:15	6.5 MEDIUM	—
SQL Injection vulnerability in Abis, Inc Adjutant Core Accounting ERP build v.PreBeta250F allows a remote attacker to obtain a sensitive information via the cid parameter in the GET request.