Lucene search
K

11 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2004-2732

Malware in sbrugna...

4.3CVSS6.4AI score0.01223EPSS
Exploits0References7
OpenVAS
OpenVAS
added 2009/03/15 12:0 a.m.36 views

Microsoft IIS Directory Traversal Vulnerability (MS04-017) - Active Check

A directory traversal vulnerability exists in Crystal Reports and Crystal Enterprise from Business Objects that runs on Microsoft IIS which could allow information disclosure and denial of service attacks on an affected system. SPDX-FileCopyrightText: 2009 Christian Eric Edjenguele Some text...

7.5CVSS5.2AI score0.72993EPSS
Exploits1References5
Cvelist
Cvelist
added 2007/10/09 10:0 a.m.19 views

CVE-2004-2742

Cross-site scripting XSS vulnerability in the report viewer in Crystal Enterprise 8.5, 9, and 10 allows remote attackers to inject arbitrary web script or HTML via script in the URL to a report RPT file...

5.7AI score0.01223EPSS
Exploits0References6
CVE
CVE
added 2007/10/09 10:0 a.m.43 views

CVE-2004-2742

Cross-site scripting (XSS) vulnerability in the Crystal Enterprise report viewer affects versions 8.5, 9, and 10. The issue allows remote attackers to inject arbitrary web script or HTML by crafting a script in the URL to a report (RPT) file, leveraging unsanitized input in the report viewer. The...

4.3CVSS5.9AI score0.01223EPSS
Exploits0References6Affected Software1
NVD
NVD
added 2006/11/29 5:28 p.m.13 views

CVE-2006-4099

Business Objects Crystal Enterprise 9 and 10 generates predictable session identifiers, which allows remote attackers to hijack sessions of other users via WCSID cookie values...

7.5CVSS6.7AI score0.01714EPSS
Exploits0References7
Cvelist
Cvelist
added 2006/11/29 5:0 p.m.19 views

CVE-2006-4099

Business Objects Crystal Enterprise 9 and 10 generates predictable session identifiers, which allows remote attackers to hijack sessions of other users via WCSID cookie values...

6.7AI score0.01714EPSS
Exploits0References7
CVE
CVE
added 2006/11/29 5:0 p.m.41 views

CVE-2006-4099

CVE-2006-4099 concerns Business Objects Crystal Enterprise 9 and 10, where the system generates predictable session identifiers, allowing remote attackers to hijack other users’ sessions through the WCSID cookie. The connected documents confirm the vulnerable component and the impact (session hij...

7.5CVSS7.1AI score0.01714EPSS
Exploits0References7Affected Software1
NVD
NVD
added 2004/12/31 5:0 a.m.10 views

CVE-2004-2742

Cross-site scripting XSS vulnerability in the report viewer in Crystal Enterprise 8.5, 9, and 10 allows remote attackers to inject arbitrary web script or HTML via script in the URL to a report RPT file...

4.3CVSS5.7AI score0.01223EPSS
Exploits0References6
securityvulns
securityvulns
added 2004/12/27 12:0 a.m.27 views

Crystal Enterprise report file crossite scripting

Crossite scripting with report files...

1.1AI score
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2004/12/27 12:0 a.m.34 views

[SA13644] Crystal Enterprise Report File Cross-Site Scripting Vulnerability

TITLE: Crystal Enterprise Report File Cross-Site Scripting Vulnerability SECUNIA ADVISORY ID: SA13644 VERIFY ADVISORY: http://secunia.com/advisories/13644/ CRITICAL: Less critical IMPACT: Cross Site Scripting WHERE: From remote SOFTWARE: Crystal Enterprise 9 http://secunia.com/product/3552/ Cryst...

0.2AI score
Exploits0
CVE
CVE
added 2004/06/11 4:0 a.m.82 views

CVE-2004-0204

CVE-2004-0204 describes a directory traversal in Crystal Reports and Crystal Enterprise Web viewers redistributed with Microsoft Visual Studio .NET 2003, Outlook 2003 with Business Contact Manager, and Microsoft Business Solutions CRM 1.2. The vulnerability arises from improper validation of HTTP...

7.5CVSS6.8AI score0.72993EPSS
Exploits1References9Affected Software9
Rows per page
Query Builder