Every CVE whose affected-product data names Accela Civic Platform, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2021-34369 — CVSS 6.5 (medium): portlets/contact/ref/refContactDetail.do in Accela Civic Platform through 20.1 allows remote attackers to obtain sensitive information via…
CVE-2021-33904 — CVSS 6.1 (medium): In Accela Civic Platform through 21.1, the security/hostSignon.do parameter servProvCode is vulnerable to XSS. NOTE: The vendor states…
CVE-2021-34370 — CVSS 6.1 (medium): Accela Civic Platform through 20.1 allows ssoAdapter/logoutAction.do successURL XSS. NOTE: the vendor states "there are configurable…