Globalnorthstar Northstar Club Management — known CVE vulnerabilities
Every CVE whose affected-product data names Globalnorthstar Northstar Club Management, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (7)
CVE-2022-26959 — CVSS 10.0 (critical): There are two full (read/write) Blind/Time-based SQL injection vulnerabilities in the Northstar Club Management version 6.3 application…
CVE-2021-29396 — CVSS 9.8 (critical): Systemic Insecure Permissions in Northstar Technologies Inc NorthStar Club Management 6.3 allows remote unauthenticated users to use…
CVE-2021-29393 — CVSS 9.8 (critical): Remote Code Execution in cominput.jsp and comoutput.jsp in Northstar Technologies Inc NorthStar Club Management 6.3 allows remote…
CVE-2021-29397 — CVSS 7.5 (high): Cleartext Transmission of Sensitive Information in /northstar/Admin/login.jsp in Northstar Technologies Inc NorthStar Club Management 6.3…
CVE-2021-29395 — CVSS 7.5 (high): Directory travesal in /northstar/filemanager/download.jsp in Northstar Technologies Inc NorthStar Club Management 6.3 allows remote…
CVE-2021-29394 — CVSS 6.5 (medium): Account Hijacking in /northstar/Admin/changePassword.jsp in Northstar Technologies Inc NorthStar Club Management 6.3 allows remote…
CVE-2021-29398 — CVSS 5.3 (medium): Directory traversal in /northstar/Common/NorthFileManager/fileManagerObjects.jsp Northstar Technologies Inc NorthStar Club Management 6.3…