CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2006-6624

Malware in sbrugna...

7.5CVSS6.4AI score0.01235EPSS

Exploits0References9

securityvulns•added 2008/08/07 12:0 a.m.•59 views

CA Products That Embed Ingres Multiple Vulnerabilities

Title: CA Products That Embed Ingres Multiple Vulnerabilities CA Advisory Date: 2008-08-01 Reported By: iDefense Labs Impact: A remote attacker can execute arbitrary code, gain privileges, or cause a denial of service condition. Summary: CA products that embed Ingres contain multiple...

7.2CVSS7.8AI score0.00071EPSS

Exploits1

seebug.org•added 2007/04/29 12:0 a.m.•44 views

CA CleverPath Portal远程SQL注入漏洞

CleverPath Portal是一个安全、可扩展的企业信息门户，提供一个协作环境以及信息、应用和Web内容的整合视图。 CleverPath Portal在处理用户请求时存在输入验证漏洞，远程攻击者可能利用此漏洞非授权访问数据库。 CleverPath Portal没有正确验证轻型搜索中的ofinterest参数及高级搜索中的description参数，如果攻击者修改了搜索URL中的上述参数的话，就可能导致发送非预期的数据库查询，检索整个数据库内容，具体取决于用户权限。 Computer Associates eTrust Security Command Center r8...

7.1AI score

Exploits0

securityvulns•added 2007/04/25 12:0 a.m.•50 views

Security Advisory: CA CleverPath SQL Injection

Background ========== The CA Clever Path Portal is a customizable portal for aggregation and integration of data and applications. It is integrated into multiple CA products including various Unicenter components. The CA CleverPath utilizes a back end Database for storing data and allows usage of...

0.6AI score

Exploits0

seebug.org•added 2006/12/22 12:0 a.m.•52 views

Computer Associates多个CleverPath Portal环境会话劫持漏洞

CleverPath Portal环境一般配置在多个Portal服务器共享一个通用数据存储时存在安全问题。这可导致通过其中一个Portal服务器连接的用户可继承Portal会话，关联另一个Portal服务器中的某个用户的安全验证。当多个Portal服务器共享通用数据存储并两个Portal服务器在同一时间里启动，由于CleverPath Portal环境变量数据存在问题，可导致以其他用户权限访问服务程序。CleverPath Portal环境变量不是默认配置。 Computer Associates Unicenter Workload Control Center 1.0 SP4...

7.1AI score

Exploits0

NVD•added 2006/12/20 12:28 a.m.•14 views

CVE-2006-6641

Unspecified vulnerability in CA CleverPath Portal before maintenance version 4.71.001179060830, as used in multiple products including BrightStor Portal r11.1, CleverPath Aion BPM r10 through r10.2, eTrust Security Command Center r1 and r8, and Unicenter, does not properly handle when multiple...

7.5CVSS6.6AI score0.01235EPSS

Exploits0References8

CVE•added 2006/12/20 12:0 a.m.•39 views

CVE-2006-6641

CA CleverPath Portal before maintenance 4.71.001_179_060830 (and related products BrightStor Portal r11.1, CleverPath Aion BPM r10–r10.2, eTrust Security Command Center r1/r8, Unicenter) is affected by a vulnerability where multiple Portal servers sharing a single data store can cause a Portal us...

7.5CVSS7AI score0.01235EPSS

Exploits0References8Affected Software11

Cvelist•added 2006/12/20 12:0 a.m.•17 views

CVE-2006-6641

6.6AI score0.01235EPSS

Exploits0References8

NVD•added 2005/12/10 11:3 a.m.•8 views

CVE-2005-4150

Cross-site scripting XSS vulnerability in the portal login page in Computer Associates CleverPath 4.7 allows remote attackers to execute Javascript via unknown vectors...

4.3CVSS6AI score0.01054EPSS

Exploits0References6

CVE•added 2005/12/10 11:0 a.m.•43 views

CVE-2005-4150

The CVE-2005-4150 entry describes a Cross-site scripting (XSS) vulnerability in the portal login page of Computer Associates CleverPath 4.7. Affects CleverPath 4.7; the vectors are described as unknown in the provided description. The NVD metrics list a CVSS v2 base score of 4.3 (Medium) with imp...

4.3CVSS6.3AI score0.01054EPSS

Exploits0References6Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by