4 matches found
CVE-2013-6177
Directory traversal vulnerability in EMC Document Sciences xPression 4.1 SP1 before Patch 47, 4.2 before Patch 26, and 4.5 before Patch 05, as used in Documentum Edition, Enterprise Edition Publish Engine, and Enterprise Edition Compuset Engine, allows remote authenticated users to read arbitrary...
CVE-2010-3421
Cross-site scripting XSS vulnerability in AffiliateLogin.asp in ProductCart 3, 4.1 SP1, and possibly other versions allows remote attackers to inject arbitrary web script or HTML via the redirectUrl parameter, a different vector than CVE-2004-2174 and CVE-2005-0995. NOTE: some of these details ar...
CVE-2010-3421
CVE-2010-3421 describes an XSS vulnerability in AffiliateLogin.asp within ProductCart (versions including 3 and 4.1 SP1, and possibly others). The vulnerability allows remote attackers to inject arbitrary script or HTML via the redirectUrl parameter, representing a different vector from CVE-2004-...
CVE-2010-3421
Cross-site scripting XSS vulnerability in AffiliateLogin.asp in ProductCart 3, 4.1 SP1, and possibly other versions allows remote attackers to inject arbitrary web script or HTML via the redirectUrl parameter, a different vector than CVE-2004-2174 and CVE-2005-0995. NOTE: some of these details ar...