Coins-global Coins Construction Cloud — known CVE vulnerabilities
Every CVE whose affected-product data names Coins-global Coins Construction Cloud, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (7)
CVE-2021-45222 — CVSS 8.8 (high): An issue was discovered in COINS Construction Cloud 11.12. Due to logical flaws in the human ressources interface, it is vulnerable to…
CVE-2021-45226 — CVSS 6.5 (medium): An issue was discovered in COINS Construction Cloud 11.12. Due to improper validation of user-controlled HTTP headers, attackers can cause…
CVE-2021-45223 — CVSS 6.5 (medium): An issue was discovered in COINS Construction Cloud 11.12. Due to insufficient input neutralization, it is vulnerable to denial of service…
CVE-2021-45225 — CVSS 6.1 (medium): An issue was discovered in COINS Construction Cloud 11.12. Due to improper input neutralization, it is vulnerable to reflected cross-site…
CVE-2021-45224 — CVSS 6.1 (medium): An issue was discovered in COINS Construction Cloud 11.12. In several locations throughout the application, JavaScript code is passed as a…
CVE-2021-45227 — CVSS 5.4 (medium): An issue was discovered in COINS Construction Cloud 11.12. Due to an inappropriate use of HTML IFRAME elements, the file upload…
CVE-2021-45228 — CVSS 5.4 (medium): An XSS issue was discovered in COINS Construction Cloud 11.12. Due to insufficient neutralization of user input in the description of a…