CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Multiple cross-site scripting XSS vulnerabilities in Hummingbird CyberDOCS 3.5.1, 3.9, and 4.0 allow remote attackers to inject arbitrary web script or HTML via certain vectors...

5.8AI score0.02925EPSS

Exploits0References5

CVE•added 2005/03/11 5:0 a.m.•61 views

CVE-2003-1100

CVE-2003-1100 concerns multiple cross-site scripting (XSS) vulnerabilities in Hummingbird CyberDOCS versions 3.5.1, 3.9, and 4.0. The underlying issue is improper handling of user-supplied input leading to injection of arbitrary web script or HTML via certain vectors. Impact is remote exploitatio...

4.3CVSS6AI score0.02925EPSS

Exploits0References5Affected Software1

CVE•added 2005/03/11 5:0 a.m.•40 views

CVE-2003-1101

CVE-2003-1101 affects Hummingbird CyberDOCS versions 3.5.1, 3.9, and 4.0. The vulnerability arises in the DM Web Server where invalid login credentials can cause an error message that reveals the full server path, enabling a remote attacker to learn the system layout. The available documents do n...

5CVSS7AI score0.02038EPSS

Exploits0References5Affected Software1

CVE•added 2005/03/11 5:0 a.m.•47 views

CVE-2003-1103

The CVE-2003-1103 entry describes an SQL injection vulnerability in Hummingbird CyberDOCS (loginact.asp) prior to version 3.9, enabling remote execution of arbitrary SQL commands. Root cause: improper handling in loginact.asp leading to SQL injection. Impact per source: partial confidentiality, i...

7.5CVSS8.6AI score0.01619EPSS

Exploits0References5Affected Software1

Cvelist•added 2005/03/11 5:0 a.m.•14 views

CVE-2003-1103

SQL injection vulnerability in loginact.asp for Hummingbird CyberDOCS before 3.9 allows remote attackers to execute arbitrary SQL commands...

8.2AI score0.01619EPSS

Exploits0References5

Cvelist•added 2005/03/11 5:0 a.m.•12 views

CVE-2003-1101

Hummingbird CyberDOCS 3.5.1, 3.9, and 4.0 allows remote attackers to obtain the full path of the DM Web Server via invalid login credentials, which reveals the path in an error message...

6.6AI score0.02038EPSS

Exploits0References5

Cvelist•added 2005/03/11 5:0 a.m.•15 views

CVE-2003-1102

Hummingbird CyberDOCS 3.5, 3.9, and 4.0, when running on IIS, uses insecure permissions for script source code files, which allows remote attackers to read the source code...

6.8AI score0.02094EPSS

Exploits0References4

CVE•added 2005/03/11 5:0 a.m.•35 views

CVE-2003-1102

CVE-2003-1102 affects Hummingbird CyberDOCS versions 3.5, 3.9, and 4.0 when run on IIS. The root cause is insecure permissions on script source code files, enabling remote attackers to read the source code. The connected documents confirm the same description across multiple records (NVD, CVE Lis...

5CVSS7.2AI score0.02094EPSS

Exploits0References4

NVD•added 2003/12/31 5:0 a.m.•7 views

CVE-2003-1102

Hummingbird CyberDOCS 3.5, 3.9, and 4.0, when running on IIS, uses insecure permissions for script source code files, which allows remote attackers to read the source code...

5CVSS6.8AI score0.02094EPSS

Exploits0References4

NVD•added 2003/12/31 5:0 a.m.•8 views

CVE-2003-1103

SQL injection vulnerability in loginact.asp for Hummingbird CyberDOCS before 3.9 allows remote attackers to execute arbitrary SQL commands...

7.5CVSS8.2AI score0.01619EPSS

Exploits0References5

NVD•added 2003/12/31 5:0 a.m.•6 views

CVE-2003-1100

Multiple cross-site scripting XSS vulnerabilities in Hummingbird CyberDOCS 3.5.1, 3.9, and 4.0 allow remote attackers to inject arbitrary web script or HTML via certain vectors...

4.3CVSS5.8AI score0.02925EPSS

Exploits0References5

NVD•added 2003/12/31 5:0 a.m.•9 views

CVE-2003-1101

Hummingbird CyberDOCS 3.5.1, 3.9, and 4.0 allows remote attackers to obtain the full path of the DM Web Server via invalid login credentials, which reveals the path in an error message...

5CVSS6.6AI score0.02038EPSS

Exploits0References5

CERT•added 2003/10/09 12:0 a.m.•13 views

Hummingbird CyberDOCS contains multiple cross-site scripting vulnerabilities

Overview Hummingbird CyberDOCS contains cross site scripting vulnerabilities that could allow an attacker to obtain sensitive information and possibly impersonate legitimate users. Description Hummingbird CyberDOCS Hummingbird DM is a web-based enterprise document management solution that runs on...

6.7AI score

Exploits0References3

CERT•added 2003/10/09 12:0 a.m.•27 views

Hummingbird CyberDOCS sets insecure permissions on script source code files

Overview Hummingbird CyberDOCS running on Microsoft Internet Information Services IIS sets insecure permissions on script source code files. A remote attacker could read the contents of unprotected files. Description Hummingbird CyberDOCS Hummingbird DM is a web-based enterprise document manageme...

7.4AI score

Exploits0References1

CERT•added 2003/10/09 12:0 a.m.•12 views

Hummingbird CyberDOCS error page discloses web server installation path

Overview Hummingbird CyberDOCS contains a vulnerability that could allow a remote attacker to learn the installation path of the web server. This information could be used to support further attacks. Description Hummingbird CyberDOCS Hummingbird DM is a web-based enterprise document management...

7.3AI score

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by