Lucene search
K

17 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 11:45 a.m.9 views

CVE-2010-0452

Multiple cross-site scripting XSS vulnerabilities in HP Project and Portfolio Management Center PPMC, formerly Mercury IT Governance 7.1 through SP10 and 7.5 through SP3 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS6AI score0.02901EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2018-18245

Malware in sbrugna...

9.8CVSS9.5AI score0.01262EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2017-17933

Malware in sbrugna...

5.4CVSS5.5AI score0.00792EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2010-0483

Malware in sbrugna...

4.3CVSS6.4AI score0.02901EPSS
Exploits0References7
seebug.org
seebug.org
added 2018/02/24 12:0 a.m.70 views

XXE Zeroday Vulnerability in HP PPM

Intro: XXE Zeroday Vulnerability in HP PPM Researchers at Rhino Security Labs discovered an XXE vulnerability in the way HP Project and Portfolio Management Center HP PPM processed imported tickets. Specifically, an XML external entity injection vulnerability allows an attacker to exploit the...

7.9AI score
Exploits0
Cvelist
Cvelist
added 2018/02/22 10:0 p.m.17 views

CVE-2018-6489

XML External Entity XXE vulnerability in Micro Focus Project and Portfolio Management Center, version 9.32. This vulnerability can be exploited to allow XML External Entity XXE...

9.4AI score0.01262EPSS
Exploits0References1
CVE
CVE
added 2018/02/22 10:0 p.m.39 views

CVE-2018-6489

CVE-2018-6489 is an XML External Entity (XXE) injection in Micro Focus Project and Portfolio Management Center, version 9.32. The root cause is XXE processing in the affected XML handling, enabling attacker-controlled entity parsing that could lead to information disclosure, with CVSS3 base score...

9.8CVSS9.2AI score0.01262EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2018/02/15 10:0 p.m.40 views

CVE-2017-8993

CVE-2017-8993 is a remote Cross-Site Scripting vulnerability in Hewlett Packard Enterprise (HPE) Project and Portfolio Management Center (PPM). Affected are HPE PPM versions v9.30, v9.31, v9.32 and v9.40. The root cause reported across sources is inadequate input filtering of user-supplied data, ...

5.4CVSS5.5AI score0.00792EPSS
Exploits0References3Affected Software1
Prion
Prion
added 2017/12/13 1:29 a.m.15 views

Design/Logic Flaw

Man-In-The-Middle vulnerability in Micro Focus Project and Portfolio Management Center, version 9.32. This vulnerability could be exploited to allow a Man-in-the-middle attack...

5.8CVSS7.3AI score0.01036EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2017/12/13 1:0 a.m.45 views

CVE-2017-14361

CVE-2017-14361 affects Micro Focus Project and Portfolio Management Center, version 9.32. It is a Man-In-The-Middle vulnerability that could be exploited by a remote attacker to perform an MITM attack. NVD lists CVSS‑3.0 base score 7.4 (HIGH) with AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N; CVSS‑2.0 bas...

7.4CVSS7.3AI score0.01036EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2017/12/13 1:0 a.m.14 views

CVE-2017-14361 MFSBGN03793 rev.1 - Project and Portfolio Management Center, Multiple vulnerabilities

Man-In-The-Middle vulnerability in Micro Focus Project and Portfolio Management Center, version 9.32. This vulnerability could be exploited to allow a Man-in-the-middle attack...

7.4CVSS7.3AI score0.01036EPSS
Exploits0References2
Cvelist
Cvelist
added 2017/12/13 1:0 a.m.19 views

CVE-2017-14362 MFSBGN03793 rev.1 - Project and Portfolio Management Center, Multiple vulnerabilities

Cross-Site Request Forgery vulnerability in Micro Focus Project and Portfolio Management Center, version 9.32. This vulnerability could be exploited to allow a Cross-Site Forgery attack...

7.3CVSS7.2AI score0.00497EPSS
Exploits0References2
CVE
CVE
added 2017/12/13 1:0 a.m.52 views

CVE-2017-14362

Micro Focus Project and Portfolio Management Center (PPM Center) version 9.32 is affected by a Cross-Site Request Forgery (CSRF) vulnerability. The CVE-2017-14362 entry is supported by multiple connected sources, including CNVD-2018-00547, which states that a remote attacker could exploit this vu...

7.3CVSS7.1AI score0.00497EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2016/06/09 10:59 a.m.4 views

CVE-2016-4370

HPE Project and Portfolio Management Center PPM 9.2x and 9.3x before 9.32.0002 allows remote authenticated users to execute arbitrary commands or obtain sensitive information via unspecified vectors...

8.8CVSS6.1AI score0.02326EPSS
Exploits0References1
NVD
NVD
added 2010/03/29 6:30 p.m.14 views

CVE-2010-0452

Multiple cross-site scripting XSS vulnerabilities in HP Project and Portfolio Management Center PPMC, formerly Mercury IT Governance 7.1 through SP10 and 7.5 through SP3 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS5.8AI score0.02901EPSS
Exploits0References5
CVE
CVE
added 2010/03/29 6:0 p.m.51 views

CVE-2010-0452

CVE-2010-0452 concerns multiple cross-site scripting (XSS) vulnerabilities in HP Project and Portfolio Management Center (PPMC), affecting HP/Mercury IT Governance releases 7.1 SP10 and 7.5 SP3 and earlier. The Red Hat/HP security bulletins and CVE records describe remote XSS via unspecified vect...

4.3CVSS5.9AI score0.02901EPSS
Exploits0References5Affected Software1
securityvulns
securityvulns
added 2010/03/26 12:0 a.m.51 views

[security bulletin] HPSBMA02436 SSRT080064 rev.1 - HP Project and Portfolio Management Center (PPMC), Remote Cross Site Scripting (XSS)

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c01762443 Version: 1 HPSBMA02436 SSRT080064 rev.1 - HP Project and Portfolio Management Center PPMC, Remote Cross Site Scripting XSS NOTICE: The information in this Security Bulletin should be act...

4.3CVSS0.1AI score0.02901EPSS
Exploits0
Rows per page
Query Builder