All 11 CVE vulnerabilities found in TopEase, with AI-generated Chinese analysis, references, and POCs.
Vendor: Business-DNA Solutions GmbH
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2021-42545 | Insufficient Session Expiration in TopEase CWE-613 | 8.1 | High | 2021-11-30 |
| CVE-2021-42123 | Missing Upload Filter in TopEase CWE-434 | 7.3 | High | 2021-11-30 |
| CVE-2021-42544 | Lack of Rate limiting in Authentication in TopEase CWE-307 | 7.5 | High | 2021-11-30 |
| CVE-2021-42122 | Denial of Service via Invalid Object Attribute in TopEase CWE-20 | 4.3 | Medium | 2021-11-30 |
| CVE-2021-42120 | Missing Character Length (Denial of Service) in TopEase CWE-20 | 6.5 | Medium | 2021-11-30 |
| CVE-2021-42121 | Denial of Service via Invalid Date Format in TopEase CWE-20 | 4.3 | Medium | 2021-11-30 |
| CVE-2021-42119 | Stored XSS in Search Function in TopEase CWE-79 | 7.3 | High | 2021-11-30 |
| CVE-2021-42118 | Stored XSS in TopEase CWE-79 | 8.1 | High | 2021-11-30 |
| CVE-2021-42117 | UI Redressing in TopEase CWE-20 | 3.5 | Low | 2021-11-30 |
| CVE-2021-42116 | Unauthorized Menu Item Access in TopEase CWE-284 | 4.3 | Medium | 2021-11-30 |
| CVE-2021-42115 | Missing HTTPOnly flag on sensitive cookie in TopEase CWE-1004 | 8.1 | High | 2021-11-30 |
All 11 known CVE vulnerabilities affecting TopEase with full Chinese analysis, references, and POCs where available.