Gss: >> Vitalsesp Security Vulnerabilities
Vitals ESP developed by Galaxy Software Services has a Incorrect Authorization vulnerability, allowing authenticated remote attackers to perform certain administrative functions, thereby escalating privileges.
CVSS Score
8.7
EPSS Score
0.001
Published
2026-03-24
Vitals ESP developed by Galaxy Software Services has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to execute certain functions to obtain sensitive information.
CVSS Score
8.7
EPSS Score
0.001
Published
2026-03-24
Vitals ESP developed by Galaxy Software Services has a SQL Injection vulnerability, allowing authenticated remote attackers to inject arbitrary SQL commands to read database contents.
CVSS Score
7.1
EPSS Score
0.001
Published
2025-12-08
Vitals ESP developed by Galaxy Software Services has a SQL Injection vulnerability, allowing authenticated remote attackers to inject arbitrary SQL commands to read database contents.
CVSS Score
7.1
EPSS Score
0.001
Published
2025-12-08
Vitals ESP developed by Galaxy Software Services has an Arbitrary File Read vulnerability, allowing privileged remote attackers to exploit Absolute Path Traversal to download arbitrary system files.
CVSS Score
6.9
EPSS Score
0.001
Published
2025-12-08