Lucene search
K

125 matches found

Prion
Prion
added 2024/03/08 9:15 p.m.29 views

Design/Logic Flaw

CWE-1385 vulnerability in OpenText Documentum D2 affecting versions16.5.1 to CE 23.2. The vulnerability could allow upload arbitrary code and execute it on the client's computer...

2.1CVSS7.8AI score0.00172EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/03/08 8:48 p.m.11 views

CVE-2023-32264

CWE-1385 vulnerability in OpenText Documentum D2 affecting versions16.5.1 to CE 23.2. The vulnerability could allow upload arbitrary code and execute it on the client's computer...

5.8CVSS7.6AI score0.00172EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/03/08 8:48 p.m.34 views

CVE-2023-32264

CWE-1385 vulnerability in OpenText Documentum D2 affecting versions16.5.1 to CE 23.2. The vulnerability could allow upload arbitrary code and execute it on the client's computer...

5.8CVSS6.3AI score0.00172EPSS
Exploits0References1
CVE
CVE
added 2024/03/08 8:48 p.m.63 views

CVE-2023-32264

CVE-2023-32264 affects OpenText Documentum D2 (versions 16.5.1 through CE 23.2). The root cause is a vulnerability that could allow uploading arbitrary code and executing it on a client computer. Impact is user-controlled code execution on the affected endpoint. Connected sources confirm the affe...

5.8CVSS6AI score0.00172EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/03/08 12:0 a.m.8 views

PT-2024-12309 · Opentext · Opentext Documentum D2

Name of the Vulnerable Software and Affected Versions: OpenText Documentum D2 versions 16.5.1 through CE 23.2 Description: The issue allows the upload of arbitrary code, which can then be executed on the client's computer. This could potentially lead to malicious activities. Recommendations: For...

5.8CVSS7.2AI score0.00172EPSS
Exploits0References4
CNNVD
CNNVD
added 2024/03/08 12:0 a.m.4 views

OpenText Documentum D2 Security Vulnerability

OpenText Documentum D2 is a component of an Enterprise Content Management ECM solution from OpenText. A security vulnerability exists in OpenText Documentum D2 versions 16.5.1 through CE 23.2. An attacker can exploit the vulnerability to upload arbitrary code and execute code on a client computer...

5.8CVSS7.6AI score0.00172EPSS
Exploits0References2
ICS
ICS
added 2022/06/16 12:0 a.m.81 views

AutomationDirect DirectLOGIC with Serial Communication

1. EXECUTIVE SUMMARY CVSS v3 7.7 ATTENTION: Low attack complexity Vendor: AutomationDirect Equipment: DirectLOGIC with Serial Communication Vulnerability: Cleartext Transmission of Sensitive Information 2. UPDATE OR REPOSTED INFORMATION This updated advisory is a follow-up to the original...

9.1CVSS9.1AI score0.00621EPSS
Exploits0References4
Openbugbounty
Openbugbounty
added 2020/10/16 9:16 p.m.9 views

d2.lingmao666.com Cross Site Scripting vulnerability OBB-1416221

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2020/09/06 11:59 a.m.6 views

d2.pl Cross Site Scripting vulnerability OBB-1308322

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2020/04/30 8:43 p.m.7 views

d2.pl Cross Site Scripting vulnerability

Open Bug Bounty ID: OBB-1153680 Security Researcher atmon3r Helped patch 228 vulnerabilities Received 5 Coordinated Disclosure badges Received 14 recommendations , a holder of 5 badges for responsible and coordinated disclosure, found a security vulnerability affecting d2.pl website and its users...

0.2AI score
Exploits0
NVD
NVD
added 2019/06/06 4:29 p.m.20 views

CVE-2019-7554

An issue was discovered in PHP Scripts Mall API Based Travel Booking 3.4.7. There is Reflected XSS via the flight-results.php d2 parameter...

6.1CVSS6.1AI score0.00876EPSS
Exploits1References2
OSV
OSV
added 2019/06/06 4:29 p.m.2 views

CVE-2019-7554

An issue was discovered in PHP Scripts Mall API Based Travel Booking 3.4.7. There is Reflected XSS via the flight-results.php d2 parameter...

6.1CVSS6.3AI score0.00876EPSS
Exploits1References2
CNVD
CNVD
added 2018/04/19 12:0 a.m.5 views

OpenText Documentum D2 Webtop Cross-Site Scripting Vulnerability

OpenText Documentum D2 Webtop is a set of enterprise-class content management system from OpenText Canada. The system manages the entire information lifecycle through the creation, modification, tracking and other functions, which includes a number of extensions, such as Documentum Web Publisher...

5.4CVSS6AI score0.00545EPSS
Exploits1References1
OSV
OSV
added 2018/04/11 6:29 a.m.3 views

CVE-2018-7659

In OpenText Documentum D2 Webtop v4.6.0030 build 059, a Stored Cross-Site Scripting Vulnerability could potentially be exploited by malicious users to compromise the affected system via a filename of an uploaded image file...

5.4CVSS5.8AI score0.00545EPSS
Exploits1References1
OSV
OSV
added 2018/04/11 6:29 a.m.2 views

CVE-2018-7660

In OpenText Documentum D2 Webtop v4.6.0030 build 059, a Reflected Cross-Site Scripting Vulnerability could potentially be exploited by malicious users to compromise the affected system via the servlet/Download docbase or username parameter...

5.4CVSS5.8AI score0.00545EPSS
Exploits1References1
NVD
NVD
added 2018/04/11 6:29 a.m.22 views

CVE-2018-7660

In OpenText Documentum D2 Webtop v4.6.0030 build 059, a Reflected Cross-Site Scripting Vulnerability could potentially be exploited by malicious users to compromise the affected system via the servlet/Download docbase or username parameter...

5.4CVSS5.3AI score0.00545EPSS
Exploits1References1
Prion
Prion
added 2018/04/11 6:29 a.m.17 views

Cross site scripting

In OpenText Documentum D2 Webtop v4.6.0030 build 059, a Stored Cross-Site Scripting Vulnerability could potentially be exploited by malicious users to compromise the affected system via a filename of an uploaded image file...

3.5CVSS5.2AI score0.00545EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2018/04/11 6:0 a.m.49 views

CVE-2018-7659

OpenText Documentum D2 Webtop 4.6.0030 build 059 is affected by a Stored Cross-Site Scripting vulnerability exploitable via the filename of an uploaded image file. The connected CNVD/NVD entries confirm the vulnerability as Stored XSS in Webtop, but the provided documents do not specify a confirm...

5.4CVSS5.1AI score0.00545EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2018/04/11 6:0 a.m.44 views

CVE-2018-7660

Affected product : OpenText Documentum D2 Webtop v4.6.0030 build 059. Vulnerability : Reflected Cross-Site Scripting (XSS) via the servlet/Download _docbase or _username parameter. Root cause / impact : XSS could allow an attacker to potentially compromise the affected system; exploitation detail...

5.4CVSS5.3AI score0.00545EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2018/04/11 6:0 a.m.22 views

CVE-2018-7659

In OpenText Documentum D2 Webtop v4.6.0030 build 059, a Stored Cross-Site Scripting Vulnerability could potentially be exploited by malicious users to compromise the affected system via a filename of an uploaded image file...

5.2AI score0.00545EPSS
Exploits1References1
Rows per page
Query Builder