Every CVE whose affected-product data names Halvotec Raquest, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2019-19611 — CVSS 7.5 (high): An issue was discovered in Halvotec RaQuest 10.23.10801.0. One of the exposed web services allows an anonymous user to access the list of…
CVE-2019-19614 — CVSS 7.5 (high): An issue was discovered in Halvotec RAQuest 10.23.10801.0. The login page is vulnerable to wildcard injection, allowing an attacker to…
CVE-2019-19610 — CVSS 5.4 (medium): An issue was discovered in Halvotec RaQuest 10.23.10801.0. It allows session fixation. Fixed in Release 24.2020.20608.0.
CVE-2019-19612 — CVSS 5.4 (medium): An issue was discovered in Halvotec RaQuest 10.23.10801.0. Several features of the application allow stored Cross-site Scripting (XSS)…
CVE-2019-19613 — CVSS 5.2 (medium): An issue was discovered in Halvotec RaQuest 10.23.10801.0. The login page of the admin application is vulnerable to an Open Redirect attack…