Lucene search
K

10 matches found

NVD
NVD
added 2019/03/21 4:1 p.m.18 views

CVE-2019-7416

XSS and/or a Client Side URL Redirect exists in OpenText Documentum Webtop 5.3 SP2. The parameter startat in "/webtop/help/en/default.htm" is vulnerable...

6.1CVSS6AI score0.01549EPSS
Exploits2References3
OSV
OSV
added 2019/03/21 4:1 p.m.4 views

CVE-2019-7416

XSS and/or a Client Side URL Redirect exists in OpenText Documentum Webtop 5.3 SP2. The parameter startat in "/webtop/help/en/default.htm" is vulnerable...

6.1CVSS6.3AI score0.01549EPSS
Exploits2References3
CVE
CVE
added 2019/03/17 7:36 p.m.48 views

CVE-2019-7416

CVE-2019-7416 affects OpenText Documentum Webtop 5.3 SP2. The vulnerability is in the startat parameter of /webtop/help/en/default.htm, enabling XSS and/or a Client-Side URL Redirect. Public documentation notes this issue and a PoC is referenced in PacketStorm for Webtop 5.3 SP2. CVSS details fro...

6.1CVSS6AI score0.01549EPSS
Exploits2References3Affected Software1
Packet Storm
Packet Storm
added 2019/02/07 12:0 a.m.51 views

OpenText Documentum Webtop 5.3 SP2 Open Redirect

...

6.4AI score0.01549EPSS
Exploits2
BDU FSTEC
BDU FSTEC
added 2017/10/17 12:0 a.m.5 views

The vulnerability in the web interface that provides access to the OpenText Documentum Webtop repository is related to incorrect restrictions on XML links to external objects. This allows attackers to read arbitrary files or cause service failures.

The vulnerability in the web interface that provides access to the OpenText Documentum Webtop repository is related to an improper limitation on XML references to external objects XML External Entity, XXE. Exploiting this vulnerability could allow a malicious actor to read arbitrary files remotel...

5.5CVSS7.8AI score0.01376EPSS
Exploits3References3Affected Software1
OSV
OSV
added 2017/09/28 1:29 a.m.4 views

CVE-2017-14525

Multiple open redirect vulnerabilities in OpenText Documentum Webtop 6.8.0160.0073 allow remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a 1 URL in the startat parameter to xda/help/en/default.htm or 2 /%09/ slash encoded horizontal tab slash followed by...

6.1CVSS5.9AI score0.00825EPSS
Exploits2References2
NVD
NVD
added 2017/09/28 1:29 a.m.23 views

CVE-2017-14525

Multiple open redirect vulnerabilities in OpenText Documentum Webtop 6.8.0160.0073 allow remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a 1 URL in the startat parameter to xda/help/en/default.htm or 2 /%09/ slash encoded horizontal tab slash followed by...

6.1CVSS6.4AI score0.00825EPSS
Exploits2References2
Prion
Prion
added 2017/09/28 1:29 a.m.20 views

Open redirect

Multiple open redirect vulnerabilities in OpenText Documentum Webtop 6.8.0160.0073 allow remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a 1 URL in the startat parameter to xda/help/en/default.htm or 2 /%09/ slash encoded horizontal tab slash followed by...

5.8CVSS6.4AI score0.00825EPSS
Exploits2References2Affected Software2
CVE
CVE
added 2017/09/27 5:0 p.m.61 views

CVE-2017-14525

CVE-2017-14525 concerns OpenText Documentum Webtop 6.8.0160.0073 with open redirect vulnerabilities. The issue allows remote attackers to redirect users to arbitrary sites via (1) the startat parameter in xda/help/en/default.htm or (2) a slash-encoded sequence followed by a domain in the redirect...

6.1CVSS6.3AI score0.00825EPSS
Exploits2References2Affected Software2
CVE
CVE
added 2017/09/27 5:0 p.m.66 views

CVE-2017-14527

CVE-2017-14527 affects OpenText Documentum Webtop 6.8.0160.0073. The vulnerability is an XML External Entity (XXE) injection in Webtop, triggered by crafted XML—specifically in a DTD within a request to xda/com/documentum/ucf/server/transport/impl/GAIRConnector or via a crafted XML file in a Medi...

8.8CVSS8.3AI score0.01376EPSS
Exploits3References2Affected Software2
Rows per page
Query Builder