Lucene search
Bonita Bpm Portal Security Vulnerabilities
cve
Multiple open redirect vulnerabilities in Bonita BPM Portal before 6.5.3 allow remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via vectors involving the redirectUrl parameter to (1) bonita/login.jsp or (2)...
6.1CVSS
6.2AI Score
0.002EPSS
2018-02-28 09:29 PM
27
cve
Directory traversal vulnerability in Bonita BPM Portal before 6.5.3 allows remote attackers to read arbitrary files via a .. (dot dot) in the theme parameter and a file path in the location parameter to...
6.1AI Score
0.479EPSS
2015-06-18 06:59 PM
32