Nottingham.ac Xerte Online Toolkits — known CVE vulnerabilities
Every CVE whose affected-product data names Nottingham.ac Xerte Online Toolkits, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2021-44663 — CVSS 9.8 (critical): A Remote Code Execution (RCE) vulnerability exists in the Xerte Project Xerte through 3.8.4 via a crafted php file through elfinder in…
CVE-2021-44662 — CVSS 6.1 (medium): A Site Scripting (XSS) vulnerability exists in the Xerte Project Xerte through 3.8.4 via the link parameter in print.php.