Infinite Automation Systems Mango Automation — known CVE vulnerabilities
Every CVE whose affected-product data names Infinite Automation Systems Mango Automation, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (8)
CVE-2015-6493 — CVSS 6.8 (medium): Cross-site request forgery (CSRF) vulnerability in Infinite Automation Mango Automation 2.5.x and 2.6.x through 2.6.0 build 430 allows…
CVE-2015-7904 — CVSS 6.5 (medium): Unrestricted file upload vulnerability in Infinite Automation Mango Automation 2.5.x and 2.6.x before 2.6.0 build 430 allows remote…
CVE-2015-7901 — CVSS 6.5 (medium): Infinite Automation Mango Automation 2.5.x and 2.6.x through 2.6.0 build 430 allows remote authenticated users to execute arbitrary OS…
CVE-2015-7903 — CVSS 6.5 (medium): SQL injection vulnerability in Infinite Automation Mango Automation 2.5.x and 2.6.x before 2.6.0 build 430 allows remote authenticated…
CVE-2015-7902 — CVSS 5.0 (medium): Infinite Automation Mango Automation 2.5.x and 2.6.x before 2.6.0 build 430 provides different error messages for failed login attempts in…
CVE-2015-1179 — CVSS 4.3 (medium): Multiple cross-site scripting (XSS) vulnerabilities in data_point_details.shtm in Mango Automation 2.4.0 and earlier allow remote attackers…
CVE-2015-7900 — CVSS 4.3 (medium): Infinite Automation Mango Automation 2.5.x and 2.6.x before 2.6.0 build 430 allows remote attackers to obtain sensitive debugging…
CVE-2015-6494 — CVSS 3.5 (low): Cross-site scripting (XSS) vulnerability in Infinite Automation Mango Automation 2.5.x and 2.6.x before 2.6.0 build 430 allows remote…