OpenText CX-E Voice 安全漏洞

OpenText CX-E Voice is a voice application from OpenText Canada. A security vulnerability exists in OpenText CX-E Voice version 22.4 and prior versions that originates from allowing access to arbitrary files on the system...

PT-2024-15257 · Opentext · Opentext Cx-E Voice

Name of the Vulnerable Software and Affected Versions: OpenText CX-E Voice versions through 22.4 Description: A Path Traversal vulnerability has been discovered, which could allow arbitrary access to files on the system. Recommendations: For versions through 22.4, update to a version later than...

CVE-2022-26328

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in OpenText Performance Center on Windows allows Cross-Site Scripting XSS.This issue affects Performance Center: 12.63...

CVE-2022-26327

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in OpenText Performance Center on Windows allows Retrieve Embedded Sensitive Data.This issue affects Performance Center: 12.63...

CVE-2022-26327 Stored cross-site scripting (XSS) has been discovered in OpenText™ Performance Center

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in OpenText Performance Center on Windows allows Retrieve Embedded Sensitive Data.This issue affects Performance Center: 12.63...

CVE-2022-26327 Stored cross-site scripting (XSS) has been discovered in OpenText™ Performance Center

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in OpenText Performance Center on Windows allows Retrieve Embedded Sensitive Data.This issue affects Performance Center: 12.63...

CVE-2022-26327

OpenText Performance Center (Windows) 12.63 is affected by CVE-2022-26327, described as Exposure of Sensitive Information to an Unauthorized Actor, enabling retrieval of embedded sensitive data. Connected sources (PT Security PT-2024-11542) confirm the vulnerable version (12.63) and recommend upd...

CVE-2022-26328

OpenText Performance Center version 12.63 for Windows is affected by an XSS vulnerability due to improper neutralization of input during web page generation. The issue is consistently described across multiple sources (NVD, Red Hat, CVE lists) as a stored/reflective-type web-page generation input...

CVE-2022-26328 User enumeration vulnerability has been discovered in OpenText™ Performance Center

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in OpenText Performance Center on Windows allows Cross-Site Scripting XSS.This issue affects Performance Center: 12.63...

CVE-2022-26328 User enumeration vulnerability has been discovered in OpenText™ Performance Center

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in OpenText Performance Center on Windows allows Cross-Site Scripting XSS.This issue affects Performance Center: 12.63...

CVE-2020-11846

A vulnerability found in OpenText Privileged Access Manager that issues a token. on successful issuance of the token, a cookie gets set that allows unrestricted access to all the application resources. This issue affects Privileged Access Manager before 3.7.0.1...

CVE-2020-11846

A vulnerability found in OpenText Privileged Access Manager that issues a token. on successful issuance of the token, a cookie gets set that allows unrestricted access to all the application resources. This issue affects Privileged Access Manager before 3.7.0.1...

CVE-2020-11846 Improper handling of token allows access to restricted resource in Privileged Access Manager

A vulnerability found in OpenText Privileged Access Manager that issues a token. on successful issuance of the token, a cookie gets set that allows unrestricted access to all the application resources. This issue affects Privileged Access Manager before 3.7.0.1...

CVE-2020-11846

OpenText Privileged Access Manager before 3.7.0.1 is affected by CVE-2020-11846. The issue arises from the Token Handler, where issuing a token also sets a cookie that grants unrestricted access to all application resources. This represents improper privilege management and can enable remote expl...

CVE-2020-11846 Improper handling of token allows access to restricted resource in Privileged Access Manager

A vulnerability found in OpenText Privileged Access Manager that issues a token. on successful issuance of the token, a cookie gets set that allows unrestricted access to all the application resources. This issue affects Privileged Access Manager before 3.7.0.1...

CVE-2020-11850

Improper Input Validation vulnerability in OpenText Self Service Password Reset allows Cross-Site Scripting XSS. This issue affects Self Service Password Reset before 4.5.0.2 and 4.4.0.6...

CVE-2020-11850

Improper Input Validation vulnerability in OpenText Self Service Password Reset allows Cross-Site Scripting XSS. This issue affects Self Service Password Reset before 4.5.0.2 and 4.4.0.6...

CVE-2020-11850 Cross site scripting vulnerability in Self Service Password Reset

Improper Input Validation vulnerability in OpenText Self Service Password Reset allows Cross-Site Scripting XSS. This issue affects Self Service Password Reset before 4.5.0.2 and 4.4.0.6...

CVE-2020-11850

CVE-2020-11850 relates to an Improper Input Validation vulnerability in OpenText Self Service Password Reset that enables Cross-Site Scripting (XSS). The connected PT-security entry confirms affected versions: OpenText Self Service Password Reset prior to 4.5.0.2 and prior to 4.4.0.6. The root ca...

CVE-2020-11850 Cross site scripting vulnerability in Self Service Password Reset

Improper Input Validation vulnerability in OpenText Self Service Password Reset allows Cross-Site Scripting XSS. This issue affects Self Service Password Reset before 4.5.0.2 and 4.4.0.6...