Lucene search
K

29 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2007-0434

Malware in sbrugna...

4.6CVSS6.4AI score0.00312EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2007-0432

Malware in sbrugna...

7.5CVSS6.4AI score0.01398EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2007-6166

Malware in sbrugna...

5CVSS6.4AI score0.07037EPSS
Exploits1References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2008-0874

Malware in sbrugna...

4.3CVSS6.4AI score0.01223EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2007-0433

Malware in sbrugna...

6.5CVSS6.4AI score0.0121EPSS
Exploits0References6
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.21 views

BEA AquaLogic Interaction 6.0/6.1 Plumtree Portal Multiple Information Disclosure Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/26620/info BEA AquaLogic Interaction is prone to multiple information-disclosure vulnerabilities. Attackers can exploit these issues to access valid usernames in the Plumtree portal as well as the server hostname, build...

7.1AI score
Exploits0
NVD
NVD
added 2008/02/21 1:44 a.m.11 views

CVE-2008-0867

Cross-site scripting XSS vulnerability in portal/server.pt in BEA AquaLogic Interaction 6.1 through MP1 and Plumtree Foundation 6.0 through SP1 allows remote attackers to inject arbitrary web script or HTML via the name parameter...

4.3CVSS5.7AI score0.01223EPSS
Exploits0References6
Cvelist
Cvelist
added 2008/02/21 1:0 a.m.18 views

CVE-2008-0867

Cross-site scripting XSS vulnerability in portal/server.pt in BEA AquaLogic Interaction 6.1 through MP1 and Plumtree Foundation 6.0 through SP1 allows remote attackers to inject arbitrary web script or HTML via the name parameter...

5.7AI score0.01223EPSS
Exploits0References6
CVE
CVE
added 2008/02/21 1:0 a.m.43 views

CVE-2008-0867

BEA AquaLogic Interaction 6.1 MP1 and Plumtree Foundation 6.0 SP1 are affected by CVE-2008-0867, a Cross‑Site Scripting (XSS) flaw in portal/server.pt that allows injection of arbitrary web script or HTML via the name parameter. The vulnerability arises from handling user-supplied input in the po...

4.3CVSS5.7AI score0.01223EPSS
Exploits0References6Affected Software2
Tenable Nessus
Tenable Nessus
added 2007/12/04 12:0 a.m.27 views

Plumtree Portal User Object User Enumeration

The version of the Plumtree portal included with BEA AquaLogic Interaction / Plumtree Foundation and installed on the remote host allows an attacker to obtain a list of users defined to the portal through its search facility. This may aide in further attacks against the affected application...

5CVSS5.6AI score0.07037EPSS
Exploits1References3
Prion
Prion
added 2007/12/01 6:46 a.m.11 views

Code injection

portal/server.pt in the Plumtree portal in BEA AquaLogic Interaction 5.0.2 through 5.0.4 and 6.0.1.218452 allows wildcards in advanced searches for usernames, which allows remote attackers to enumerate valid usernames via the intxfulltext parameter...

5CVSS7AI score0.07037EPSS
Exploits1References6Affected Software1
NVD
NVD
added 2007/12/01 6:46 a.m.17 views

CVE-2007-6198

portal/server.pt in the Plumtree portal in BEA AquaLogic Interaction 5.0.2 through 5.0.4 and 6.0.1.218452 allows wildcards in advanced searches for usernames, which allows remote attackers to enumerate valid usernames via the intxfulltext parameter...

5CVSS6.7AI score0.07037EPSS
Exploits1References6
NVD
NVD
added 2007/12/01 6:46 a.m.14 views

CVE-2007-6197

The Plumtree portal in BEA AquaLogic Interaction 5.0.2 through 5.0.4 and 6.0.1.218452 allows remote attackers to obtain version numbers and internal hostnames by reading comments in the HTML source of any page...

5CVSS6.5AI score0.01584EPSS
Exploits1References6
Prion
Prion
added 2007/12/01 6:46 a.m.16 views

Code injection

The Plumtree portal in BEA AquaLogic Interaction 5.0.2 through 5.0.4 and 6.0.1.218452 allows remote attackers to obtain version numbers and internal hostnames by reading comments in the HTML source of any page...

5CVSS7AI score0.01584EPSS
Exploits1References6Affected Software1
Cvelist
Cvelist
added 2007/12/01 1:0 a.m.20 views

CVE-2007-6198

portal/server.pt in the Plumtree portal in BEA AquaLogic Interaction 5.0.2 through 5.0.4 and 6.0.1.218452 allows wildcards in advanced searches for usernames, which allows remote attackers to enumerate valid usernames via the intxfulltext parameter...

6.7AI score0.07037EPSS
Exploits1References6
CVE
CVE
added 2007/12/01 1:0 a.m.40 views

CVE-2007-6197

The CVE-2007-6197 entry affects BEA AquaLogic Interaction Plumtree Portal 5.0.2–5.0.4 and 6.0.1.218452. The root cause is information disclosure via comments in the HTML source of any page, allowing remote attackers to learn version numbers and internal hostnames. Impact is partial confidentialit...

5CVSS6.5AI score0.01584EPSS
Exploits1References6Affected Software1
Cvelist
Cvelist
added 2007/12/01 1:0 a.m.19 views

CVE-2007-6197

The Plumtree portal in BEA AquaLogic Interaction 5.0.2 through 5.0.4 and 6.0.1.218452 allows remote attackers to obtain version numbers and internal hostnames by reading comments in the HTML source of any page...

6.5AI score0.01584EPSS
Exploits1References6
CVE
CVE
added 2007/12/01 1:0 a.m.49 views

CVE-2007-6198

The CVE-2007-6198 issue affects the Plumtree Portal component (portal/server.pt) in BEA AquaLogic Interaction versions 5.0.2–5.0.4 and 6.0.1.218452. The vulnerability allows wildcards in advanced searches for usernames via the in_tx_fulltext parameter, enabling remote attackers to enumerate valid...

5CVSS6.7AI score0.07037EPSS
Exploits1References6Affected Software1
exploitpack
exploitpack
added 2007/11/28 12:0 a.m.13 views

BEA AquaLogic Interaction 6.06.1 Plumtree Portal - Multiple Information Disclosure Vulnerabilities

BEA AquaLogic Interaction 6.06.1 Plumtree Portal - Multiple Information Disclosure Vulnerabilities source: https://www.securityfocus.com/bid/26620/info BEA AquaLogic Interaction is prone to multiple information-disclosure vulnerabilities. Attackers can exploit these issues to access valid usernam...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2007/11/28 12:0 a.m.26 views

BEA AquaLogic Interaction 6.0/6.1 Plumtree Portal - Multiple Information Disclosure Vulnerabilities

source: https://www.securityfocus.com/bid/26620/info BEA AquaLogic Interaction is prone to multiple information-disclosure vulnerabilities. Attackers can exploit these issues to access valid usernames in the Plumtree portal as well as the server hostname, build date, and server version. Informati...

7.4AI score
Exploits0
Rows per page
Query Builder