CVE Tools

hyland

Enterprise Softwarecommercial

16

Cumulative CVEs

2

Monthly snapshots

#38

Peak rank

Top products

Latest CVEs

The 15 most recently published vulnerabilities affecting hyland.

CVE-2026-26339Hyland Alfresco Transformation Service Argument Injection RCE9.8Feb 19, 2026
CVE-2026-26338Hyland Alfresco Transformation Service SSRF9.8Feb 19, 2026
CVE-2026-26337Hyland Alfresco Transformation Service Absolute Path Traversal Arbitrary File Read and SSRF8.2Feb 19, 2026
CVE-2026-26336Hyland Alfresco Improper Authorization Arbitrary File Read7.5Feb 19, 2026
CVE-2026-26221Hyland OnBase Timer Service Unauthenticated .NET Remoting RCE9.8Feb 13, 2026
CVE-2025-0557Hyland Alfresco Community Edition URL s cross site scripting4.3Jan 18, 2025
CVE-2024-40347A reflected cross-site scripting (XSS) vulnerability in Hyland Alfresco Platform 23.2.1-r96 allows attackers to execute arbitrary code in the context of a user's browser via injecting a crafted pay...6.1Jul 20, 2024
CVE-2023-49964An issue was discovered in Hyland Alfresco Community Edition through 7.2.0. By inserting malicious content in the folder.get.html.ftl file, an attacker may perform SSTI (Server-Side Template Inject...8.8Dec 11, 2023
CVE-2021-32828Regular expression Denial of Service in MooTools5.4Jan 5, 2023
CVE-2022-23342The Hyland Onbase Application Server releases prior to 20.3.58.1000 and OnBase releases 21.1.1.1000 through 21.1.15.1000 are vulnerable to a username enumeration vulnerability. An attacker can obta...5.3Jun 21, 2022
CVE-2020-25247An issue was discovered in Hyland OnBase through 18.0.0.32 and 19.x through 19.8.9.1000. Directory traversal exists for writing to files, as demonstrated by the FileName parameter.7.5Sep 11, 2020
CVE-2020-25248An issue was discovered in Hyland OnBase through 16.0.2.83 and below, 17.0.2.109 and below, 18.0.0.37 and below, 19.8.16.1000 and below and 20.3.10.1000 and below. Directory traversal exists for re...7.5Sep 11, 2020
CVE-2020-25249An issue was discovered in Hyland OnBase 16.0.2.83 and below, 17.0.2.109 and below, 18.0.0.37 and below, 19.8.16.1000 and below and 20.3.10.1000 and below. The server typically logs activity only w...5.3Sep 11, 2020
CVE-2020-25250An issue was discovered in Hyland OnBase 16.0.2.83 and below, 17.0.2.109 and below, 18.0.0.37 and below, 19.8.16.1000 and below and 20.3.10.1000 and below. Client applications can write arbitrary d...7.5Sep 11, 2020
CVE-2020-25251An issue was discovered in Hyland OnBase 16.0.2.83 and below, 17.0.2.109 and below, 18.0.0.37 and below, 19.8.16.1000 and below and 20.3.10.1000 and below. Client-side authentication is used for cr...9.1Sep 11, 2020