Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2017-14757
HistoryOct 02, 2017 - 5:00 p.m.

CVE-2017-14757

2017-10-0217:00:00
mitre
www.cve.org
6

AI Score

8.8

Confidence

High

EPSS

0.002

Percentile

55.6%

JSON

OpenText Document Sciences xPression (formerly EMC Document Sciences xPression) v4.5SP1 Patch 13 (older versions might be affected as well) is prone to SQL Injection: /xDashboard/html/jobhistory/downloadSupportFile.action, parameter: jobRunId. In order for this vulnerability to be exploited, an attacker must authenticate to the application first.

Related

cve 1
zdt 2
packetstorm 1
exploitdb 1
exploitpack 1
prion 1
nvd 1
cve
cve
CVE-2017-14757
2017-10-03 01:29:02
zdt
zdt
OpenText Document Sciences xPression 4.5SP1 Patch 13 SQL Injection Vulnerability
2017-09-30 00:00:00
OpenText Document Sciences xPression 4.5SP1 Patch 13 - documentId SQL Injection Vulnerability
2017-10-02 00:00:00
packetstorm
packetstorm
OpenText Document Sciences xPression 4.5SP1 Patch 13 SQL Injection
2017-09-29 00:00:00
exploitdb
exploitdb
OpenText Document Sciences xPression 4.5SP1 Patch 13 - 'jobRunId' SQL Injection
2017-10-02 00:00:00
exploitpack
exploitpack
OpenText Document Sciences xPression 4.5SP1 Patch 13 - jobRunId SQL Injection
2017-10-02 00:00:00
prion
prion
Sql injection
2017-10-03 01:29:00
nvd
nvd
CVE-2017-14757
2017-10-03 01:29:02

AI Score

8.8

Confidence

High

EPSS

0.002

Percentile

55.6%

JSON
Related for CVELIST:CVE-2017-14757
cve1zdt2packetstorm1exploitdb1exploitpack1prion1nvd1