BABESOLUTIONS

Command Center Vulnerabilities Assets Compliance

AS

Alex Santiago

Security Admin

Vulnerability Discovery & Tracking

Comprehensive vulnerability management and remediation workflow

Search

Severity

Status

Age

CVE ID	Description	Severity	CVSS	Affected Asset	Discovered	Status	Assigned To	Actions
`CVE-2024-1234`	SQL Injection in Authentication Module Allows unauthorized database access via login form	CRITICAL	9.8	auth-api-prod-01.babesolutions.com.au	2 days ago	In Progress	James Chen
`CVE-2024-5678`	Remote Code Execution - Node.js Prototype Pollution Critical RCE vulnerability in Express middleware	CRITICAL	9.1	payment-gateway-prod.babesolutions.com.au	4 days ago	Open	Unassigned
`CVE-2024-9012`	Cross-Site Scripting in Customer Portal Reflected XSS in profile update endpoint	HIGH	7.4	portal.babesolutions.com.au	1 week ago	In Progress	Sarah Williams
`CVE-2024-3456`	Outdated TLS Certificate Configuration TLS 1.0/1.1 enabled, weak cipher suites	HIGH	7.2	api-legacy.babesolutions.com.au	3 days ago	Open	Mike Rodriguez
`CVE-2024-7890`	Privilege Escalation in Admin Panel IDOR vulnerability allows role elevation	CRITICAL	8.9	admin.babesolutions.com.au	6 days ago	In Progress	Emma Thompson
`CVE-2024-2468`	Insecure Direct Object Reference Access control bypass in document download	HIGH	7.8	docs.babesolutions.com.au	5 days ago	Resolved	David Lee
`CVE-2024-1357`	Outdated jQuery Library jQuery 2.x with known XSS vulnerabilities	MEDIUM	6.1	www.babesolutions.com.au	2 weeks ago	In Progress	Lisa Park
`CVE-2024-8024`	Missing Security Headers HSTS, CSP, and X-Frame-Options not configured	MEDIUM	5.3	blog.babesolutions.com.au	1 week ago	Open	Unassigned
`CVE-2024-4792`	Information Disclosure via Error Messages Stack traces exposed in production environment	LOW	3.7	dev-api.babesolutions.com.au	3 weeks ago	Open	Unassigned
`CVE-2024-6135`	Weak Password Policy No complexity requirements enforced	LOW	4.2	accounts.babesolutions.com.au	1 month ago	In Progress	Tom Baker

Showing 1-10 of 1,247 vulnerabilities