📦 Sage Dpw

Name: Sage Dpw
Author: Sagedpw

by Sagedpw

🔍 What is Sage Dpw?

Description coming soon...

🛡️ Security Overview

Click on a severity to filter vulnerabilities

⚠️ Known Vulnerabilities

CVE-2025-51532

HIGH CVSS 7.5 Aug 6, 2025

This vulnerability allows unauthenticated attackers to access the Database Monitor administrative interface in Sage DPW software through specially crafted requests. It affects all versions up to 2024_...

CVE-2024-56883

HIGH CVSS 8.1 Feb 18, 2025

Sage DPW versions before 2024_12_001 have an improper access control vulnerability where server-side role checks are inconsistently enforced. Low-privileged users with employee roles can create extern...

CVE-2025-51531

MEDIUM CVSS 6.1 Aug 6, 2025

A reflected cross-site scripting (XSS) vulnerability in Sage DPW allows attackers to inject malicious JavaScript into the tabfields parameter, which executes in victims' browsers when they visit a cra...

CVE-2024-56882

MEDIUM CVSS 5.4 Feb 18, 2025

Sage DPW versions before 2024_12_000 contain a stored cross-site scripting (XSS) vulnerability in the Kurstitel and Kurzinfo input fields. Low-privileged users with employee role privileges can inject...