CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1938 matches found

CNVD•added 2017/10/09 12:0 a.m.•1 views

OpenText Document Sciences xPression SQL Injection Vulnerability

OpenText Document Sciences xPression formerly known as EMC Document Sciences xPression is a suite of document output management and customer communication solutions from OpenText Canada. A SQL injection vulnerability exists in OpenText Document Sciences xPression version 4.5SP1 Patch 13. A remote...

8.8CVSS8.8AI score0.00329EPSS

Exploits6References1

CNVD•added 2017/10/09 12:0 a.m.•3 views

OpenText Document Sciences xPression Cross-Site Scripting Vulnerability (CNVD-2017-33297)

OpenText Document Sciences xPression formerly known as EMC Document Sciences xPression is a document output management and customer communication solution from OpenText Canada. The solution integrates with an organization's Customer Relationship Management CRM, Enterprise Content Management ECM a...

6.1CVSS6.2AI score0.00301EPSS

Exploits3References1

CNVD•added 2017/10/09 12:0 a.m.•2 views

OpenText Document Sciences xPression Cross-Site Scripting Vulnerability

6.1CVSS6.2AI score0.00301EPSS

Exploits3References1

CNVD•added 2017/10/09 12:0 a.m.•2 views

OpenText Document Sciences xPression XML External Entity Vulnerability

OpenText Document Sciences xPression formerly known as EMC Document Sciences xPression is a document output management and customer communication solution from OpenText Canada. The solution integrates an organization's Customer Relationship Management CRM, Enterprise Content Management ECM, and...

9.8CVSS9.5AI score0.00464EPSS

Exploits1References1

CNVD•added 2017/10/09 12:0 a.m.•2 views

OpenText Document Sciences xPression SQL Injection Vulnerability (CNVD-2017-33295)

OpenText Document Sciences xPression formerly known as EMC Document Sciences xPression is a document output management and customer communication solution from OpenText Canada. The solution integrates an organization's Customer Relationship Management CRM, Enterprise Content Management ECM, and...

8.8CVSS8.8AI score0.00329EPSS

Exploits6References1

OSV•added 2017/10/03 1:29 a.m.•1 views

CVE-2017-14758

OpenText Document Sciences xPression formerly EMC Document Sciences xPression v4.5SP1 Patch 13 older versions might be affected as well is prone to SQL Injection: /xAdmin/html/cmdoclistviewuc.jsp, parameter: documentId. In order for this vulnerability to be exploited, an attacker must authenticat...

8.8CVSS5.8AI score0.00329EPSS

Exploits6References3

NVD•added 2017/10/03 1:29 a.m.•20 views

CVE-2017-14755

OpenText Document Sciences xPression formerly EMC Document Sciences xPression v4.5SP1 Patch 13 older versions might be affected as well is prone to Cross-Site Scripting: /xAdmin/html/XPressoDoc, parameter: categoryId...

6.1CVSS6.3AI score0.00301EPSS

Exploits3References2

OSV•added 2017/10/03 1:29 a.m.•3 views

CVE-2017-14757

OpenText Document Sciences xPression formerly EMC Document Sciences xPression v4.5SP1 Patch 13 older versions might be affected as well is prone to SQL Injection: /xDashboard/html/jobhistory/downloadSupportFile.action, parameter: jobRunId. In order for this vulnerability to be exploited, an...

8.8CVSS5.8AI score

Exploits0References3

OSV•added 2017/10/03 1:29 a.m.•1 views

CVE-2017-14755

6.1CVSS5.8AI score

Exploits0References2

NVD•added 2017/10/03 1:29 a.m.•25 views

CVE-2017-14754

OpenText Document Sciences xPression formerly EMC Document Sciences xPression v4.5SP1 Patch 13 older versions might be affected as well is prone to Arbitrary File Read: /xAdmin/html/cmdatasourcegroupxsd.jsp, parameter: xsddatasourceschemafile filename. In order for this vulnerability to be...

6.8CVSS6.4AI score0.00373EPSS

Exploits2References2

NVD•added 2017/10/03 1:29 a.m.•17 views

CVE-2017-14757

8.8CVSS8.8AI score0.00329EPSS

Exploits6References3

NVD•added 2017/10/03 1:29 a.m.•26 views

CVE-2017-14758

8.8CVSS8.8AI score0.00329EPSS

Exploits6References3

OSV•added 2017/10/03 1:29 a.m.•2 views

CVE-2017-14754

6.5CVSS5.8AI score0.00373EPSS

Exploits2References2

OSV•added 2017/10/03 1:29 a.m.•2 views

CVE-2017-14756

6.1CVSS5.8AI score0.00301EPSS

Exploits3References2

NVD•added 2017/10/03 1:29 a.m.•12 views

CVE-2017-14759

OpenText Document Sciences xPression formerly EMC Document Sciences xPression v4.5SP1 Patch 13 older versions might be affected as well is prone to an XML External Entity vulnerability: /xFramework/services/QuickDoc.QuickDocHttpSoap11Endpoint/. An unauthenticated user is able to read directory...

9.8CVSS9.4AI score0.00464EPSS

Exploits1References2

NVD•added 2017/10/03 1:29 a.m.•19 views

CVE-2017-14756

6.1CVSS6.3AI score0.00301EPSS

Exploits3References2

OSV•added 2017/10/03 1:29 a.m.•1 views

CVE-2017-14759

9.8CVSS5.8AI score0.00464EPSS

Exploits1References2