CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1938 matches found

CVE•added 2019/03/22 7:26 p.m.•40 views

CVE-2018-20165

CVE-2018-20165 describes a cross-site scripting (XSS) vulnerability in OpenText Portal 7.4.4. The issue arises from insufficient validation of client-side data, enabling an attacker to inject arbitrary script or HTML via the vgnextoid parameter in a menuitem URI. Documents consistently reference ...

6.1CVSS6AI score0.0095EPSS

Exploits0References1Affected Software1

Cvelist•added 2019/03/22 7:26 p.m.•17 views

CVE-2018-20165

Cross-site scripting XSS vulnerability in OpenText Portal 7.4.4 allows remote attackers to inject arbitrary web script or HTML via the vgnextoid parameter to a menuitem URI...

6.1AI score0.0095EPSS

Exploits0References1

OSV•added 2019/03/21 4:1 p.m.•1 views

CVE-2019-7416

XSS and/or a Client Side URL Redirect exists in OpenText Documentum Webtop 5.3 SP2. The parameter startat in "/webtop/help/en/default.htm" is vulnerable...

6.1CVSS6.3AI score0.00234EPSS

Exploits2References3

NVD•added 2019/03/21 4:1 p.m.•14 views

CVE-2019-7416

XSS and/or a Client Side URL Redirect exists in OpenText Documentum Webtop 5.3 SP2. The parameter startat in "/webtop/help/en/default.htm" is vulnerable...

6.1CVSS6AI score0.00234EPSS

Exploits2References3

Prion•added 2019/03/21 4:1 p.m.•11 views

Design/Logic Flaw

XSS and/or a Client Side URL Redirect exists in OpenText Documentum Webtop 5.3 SP2. The parameter startat in "/webtop/help/en/default.htm" is vulnerable...

4.3CVSS6AI score0.00234EPSS

Exploits2References3Affected Software1

Cvelist•added 2019/03/17 7:36 p.m.•16 views

CVE-2019-7416

XSS and/or a Client Side URL Redirect exists in OpenText Documentum Webtop 5.3 SP2. The parameter startat in "/webtop/help/en/default.htm" is vulnerable...

6.1AI score0.00234EPSS

Exploits2References3

CVE•added 2019/03/17 7:36 p.m.•46 views

CVE-2019-7416

CVE-2019-7416 affects OpenText Documentum Webtop 5.3 SP2. The vulnerability is in the startat parameter of /webtop/help/en/default.htm, enabling XSS and/or a Client-Side URL Redirect. Public documentation notes this issue and a PoC is referenced in PacketStorm for Webtop 5.3 SP2. CVSS details fro...

6.1CVSS6AI score0.00234EPSS

Exploits2References3Affected Software1

Packet Storm•added 2019/02/07 12:0 a.m.•50 views

OpenText Documentum Webtop 5.3 SP2 Open Redirect

...

6.4AI score0.00234EPSS

Exploits2

Packet Storm•added 2018/11/01 12:0 a.m.•161 views

Brava! Enterprise / Server 16.4 Information Disclosure

Vulnerable Application: Brava! Enterprise and Brava! Server Components Affected Versions: Brava! Enterprise and Brava! Server Components have this as the default configuration, from Brava! 7.5 to the latest Brava! 16.4 on Windows. Not Affected Versions: Linux installs do not automatically create...

7.4AI score

Exploits0

NVD•added 2018/04/11 6:29 a.m.•18 views

CVE-2018-7660

In OpenText Documentum D2 Webtop v4.6.0030 build 059, a Reflected Cross-Site Scripting Vulnerability could potentially be exploited by malicious users to compromise the affected system via the servlet/Download docbase or username parameter...

5.4CVSS5.3AI score0.00206EPSS

Exploits1References1

Prion•added 2018/04/11 6:29 a.m.•16 views

Cross site scripting

In OpenText Documentum D2 Webtop v4.6.0030 build 059, a Stored Cross-Site Scripting Vulnerability could potentially be exploited by malicious users to compromise the affected system via a filename of an uploaded image file...

3.5CVSS5.2AI score0.00206EPSS

Exploits1References1Affected Software1

OSV•added 2018/04/11 6:29 a.m.•1 views

CVE-2018-7659

5.4CVSS5.8AI score

Exploits0References1

NVD•added 2018/04/11 6:29 a.m.•19 views

CVE-2018-7659

5.4CVSS5.2AI score0.00206EPSS

Exploits1References1

Prion•added 2018/04/11 6:29 a.m.•11 views

Cross site scripting

3.5CVSS5.3AI score0.00206EPSS

Exploits1References1Affected Software1

Cvelist•added 2018/04/11 6:0 a.m.•20 views

CVE-2018-7660

5.3AI score0.00206EPSS

Exploits1References1

CVE•added 2018/04/11 6:0 a.m.•46 views

CVE-2018-7659

OpenText Documentum D2 Webtop 4.6.0030 build 059 is affected by a Stored Cross-Site Scripting vulnerability exploitable via the filename of an uploaded image file. The connected CNVD/NVD entries confirm the vulnerability as Stored XSS in Webtop, but the provided documents do not specify a confirm...

5.4CVSS5.1AI score0.00206EPSS

Exploits1References1Affected Software1

CVE•added 2018/04/11 6:0 a.m.•42 views

CVE-2018-7660

Affected product : OpenText Documentum D2 Webtop v4.6.0030 build 059. Vulnerability : Reflected Cross-Site Scripting (XSS) via the servlet/Download _docbase or _username parameter. Root cause / impact : XSS could allow an attacker to potentially compromise the affected system; exploitation detail...

5.4CVSS5.3AI score0.00206EPSS

Exploits1References1Affected Software1

Cvelist•added 2018/04/11 6:0 a.m.•20 views

CVE-2018-7659

5.2AI score0.00206EPSS

Exploits1References1

OSV•added 2018/01/04 5:29 p.m.•3 views

CVE-2017-14960

xDashboard in OpenText Document Sciences xPression formerly EMC Document Sciences xPression v4.5SP1 Patch 13 has SQL Injection...

7.5CVSS5.8AI score

Exploits0References3

Prion•added 2018/01/04 5:29 p.m.•18 views