Oneorzero Aims — known CVE vulnerabilities
Every CVE whose affected-product data names Oneorzero Aims, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
- CVE-2011-4214 — CVSS 10.0 (critical): OneOrZero Action & Information Management System (AIMS) 2.7.0 allows remote attackers to bypass authentication and obtain administrator…
- CVE-2011-4215 — CVSS 7.5 (high): SQL injection vulnerability in lib/ooz_access.php in OneOrZero Action & Information Management System (AIMS) 2.7.0 allows remote attackers…
- CVE-2010-4834 — CVSS 6.5 (medium): Multiple SQL injection vulnerabilities in index.php in OneOrZero AIMS 2.6.0 Members Edition and 2.7.0 Trial Edition allow remote…
- CVE-2010-4835 — CVSS 4.0 (medium): Directory traversal vulnerability in index.php in OneOrZero AIMS 2.6.0 Members Edition allows remote authenticated users to read arbitrary…