73 matches found
CVE-2018-6588
CA API Developer Portal 3.5 up to and including 3.5 CR5 has a reflected cross-site scripting vulnerability related to the apiExplorer...
Cross site scripting
CA API Developer Portal 3.5 up to and including 3.5 CR6 has a reflected cross-site scripting vulnerability related to the widgetID variable...
CVE-2018-6587
CA API Developer Portal 3.5 up to and including 3.5 CR6 has a reflected cross-site scripting vulnerability related to the widgetID variable...
CVE-2018-6588
CA API Developer Portal 3.5 up to and including 3.5 CR5 has a reflected cross-site scripting vulnerability related to the apiExplorer...
CVE-2018-6587
CA API Developer Portal 3.5 up to and including 3.5 CR6 has a reflected cross-site scripting vulnerability related to the widgetID variable...
CVE-2018-6586
CA API Developer Portal 3.5 up to and including 3.5 CR6 has a stored cross-site scripting vulnerability related to profile picture processing...
CVE-2018-6586
CA API Developer Portal 3.5 up to and including 3.5 CR6 contains a stored cross-site scripting vulnerability in profile picture handling due to insufficient input filtering. Impact is partial integrity loss via script execution in the context of the user viewing the affected portal. The CVE is co...
CVE-2016-3118
CRLF injection vulnerability in CA API Gateway formerly Layer7 API Gateway 7.1 before 7.1.04, 8.0 through 8.3 before 8.3.01, and 8.4 before 8.4.01 allows remote attackers to have an unspecified impact via unknown vectors...
CVE-2016-3118
CRLF injection vulnerability in CA API Gateway formerly Layer7 API Gateway 7.1 before 7.1.04, 8.0 through 8.3 before 8.3.01, and 8.4 before 8.4.01 allows remote attackers to have an unspecified impact via unknown vectors...
Crlf injection
CRLF injection vulnerability in CA API Gateway formerly Layer7 API Gateway 7.1 before 7.1.04, 8.0 through 8.3 before 8.3.01, and 8.4 before 8.4.01 allows remote attackers to have an unspecified impact via unknown vectors...
CVE-2016-3118
CRLF injection vulnerability in CA API Gateway formerly Layer7 API Gateway 7.1 before 7.1.04, 8.0 through 8.3 before 8.3.01, and 8.4 before 8.4.01 allows remote attackers to have an unspecified impact via unknown vectors...
CVE-2016-3118
CA API Gateway (formerly Layer7 API Gateway) is affected by a CRLF injection vulnerability identified as CVE-2016-3118. The affected product ranges are CA API Gateway 7.1 before 7.1.04, 8.0 through 8.3 before 8.3.01, and 8.4 before 8.4.01. The vulnerability allows remote attackers to cause an uns...
CA API Gateway CRLF Injection Vulnerability
CA API Gateway formerly known as Layer7 API Gateway is a gateway product from CA USA for partners, developers, mobile, cloud and mobile mainframe access to data and services. CA API Gateway suffers from a CRLF injection vulnerability. A remote attacker could exploit this vulnerability to conduct ...