Lucene search
K

82 matches found

CVE
CVE
added 2015/05/25 7:0 p.m.45 views

CVE-2015-0540

CVE-2015-0540 affects EMC Document Sciences xPression (xAdmin interface) 4.2 before P44 and 4.5 SP1 before P03. The issue is a SQL injection vulnerability in the xAdmin interface that could allow remote authenticated users to execute arbitrary SQL commands via unspecified vectors, potentially com...

6.5CVSS8.1AI score0.00991EPSS
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2013/12/09 12:0 a.m.121 views

ESA-2013-078: EMC Document Sciences xPression Multiple Vulnerabilities

ESA-2013-078.txt -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2013-078: EMC Document Sciences xPression Multiple Vulnerabilities EMC Identifier: ESA-2013-078 CVE Identifier: CVE-2013-6173, CVE-2013-6174, CVE-2013-6175, CVE-2013-6176, CVE-2013-6177 Severity Rating: CVSS v2 Base Score: See bel...

6.8CVSS7.4AI score0.02403EPSS
Exploits0
NVD
NVD
added 2013/11/21 4:40 a.m.31 views

CVE-2013-6177

Directory traversal vulnerability in EMC Document Sciences xPression 4.1 SP1 before Patch 47, 4.2 before Patch 26, and 4.5 before Patch 05, as used in Documentum Edition, Enterprise Edition Publish Engine, and Enterprise Edition Compuset Engine, allows remote authenticated users to read arbitrary...

3.5CVSS6.2AI score0.02317EPSS
Exploits0References4
NVD
NVD
added 2013/11/21 4:40 a.m.45 views

CVE-2013-6173

Multiple cross-site request forgery CSRF vulnerabilities in EMC Document Sciences xPression 4.1 SP1 before Patch 47, 4.2 before Patch 26, and 4.5 before Patch 05, as used in Documentum Edition, Enterprise Edition Publish Engine, and Enterprise Edition Compuset Engine, allow remote attackers to...

6.8CVSS7.2AI score0.01296EPSS
Exploits0References5
NVD
NVD
added 2013/11/21 4:40 a.m.22 views

CVE-2013-6176

Multiple SQL injection vulnerabilities in EMC Document Sciences xPression 4.1 SP1 before Patch 47, 4.2 before Patch 26, and 4.5 before Patch 05, as used in Documentum Edition, Enterprise Edition Publish Engine, and Enterprise Edition Compuset Engine, allow remote authenticated users to execute...

6.5CVSS8.1AI score0.02177EPSS
Exploits0References4
NVD
NVD
added 2013/11/21 4:40 a.m.22 views

CVE-2013-6174

Multiple open redirect vulnerabilities in xAdmin in EMC Document Sciences xPression 4.1 SP1 before Patch 47, 4.2 before Patch 26, and 4.5 before Patch 05, as used in Documentum Edition, Enterprise Edition Publish Engine, and Enterprise Edition Compuset Engine, allow remote attackers to redirect...

5.8CVSS6.9AI score0.02403EPSS
Exploits0References5
NVD
NVD
added 2013/11/21 4:40 a.m.19 views

CVE-2013-6175

Multiple cross-site scripting XSS vulnerabilities in EMC Document Sciences xPression 4.1 SP1 before Patch 47, 4.2 before Patch 26, and 4.5 before Patch 05, as used in Documentum Edition, Enterprise Edition Publish Engine, and Enterprise Edition Compuset Engine, allow remote attackers to inject...

4.3CVSS5.8AI score0.02261EPSS
Exploits0References4
Prion
Prion
added 2013/11/21 4:40 a.m.17 views

Open redirect

Multiple open redirect vulnerabilities in xAdmin in EMC Document Sciences xPression 4.1 SP1 before Patch 47, 4.2 before Patch 26, and 4.5 before Patch 05, as used in Documentum Edition, Enterprise Edition Publish Engine, and Enterprise Edition Compuset Engine, allow remote attackers to redirect...

5.8CVSS7.3AI score0.02403EPSS
Exploits0References5Affected Software1
Prion
Prion
added 2013/11/21 4:40 a.m.24 views

Directory traversal

Directory traversal vulnerability in EMC Document Sciences xPression 4.1 SP1 before Patch 47, 4.2 before Patch 26, and 4.5 before Patch 05, as used in Documentum Edition, Enterprise Edition Publish Engine, and Enterprise Edition Compuset Engine, allows remote authenticated users to read arbitrary...

3.5CVSS6.8AI score0.02317EPSS
Exploits0References4Affected Software1
Prion
Prion
added 2013/11/21 4:40 a.m.21 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in EMC Document Sciences xPression 4.1 SP1 before Patch 47, 4.2 before Patch 26, and 4.5 before Patch 05, as used in Documentum Edition, Enterprise Edition Publish Engine, and Enterprise Edition Compuset Engine, allow remote attackers to inject...

4.3CVSS6.1AI score0.02261EPSS
Exploits0References4Affected Software1
Prion
Prion
added 2013/11/21 4:40 a.m.19 views

Sql injection

Multiple SQL injection vulnerabilities in EMC Document Sciences xPression 4.1 SP1 before Patch 47, 4.2 before Patch 26, and 4.5 before Patch 05, as used in Documentum Edition, Enterprise Edition Publish Engine, and Enterprise Edition Compuset Engine, allow remote authenticated users to execute...

6.5CVSS8.7AI score0.02177EPSS
Exploits0References4Affected Software1
Prion
Prion
added 2013/11/21 4:40 a.m.19 views

Cross site request forgery (csrf)

Multiple cross-site request forgery CSRF vulnerabilities in EMC Document Sciences xPression 4.1 SP1 before Patch 47, 4.2 before Patch 26, and 4.5 before Patch 05, as used in Documentum Edition, Enterprise Edition Publish Engine, and Enterprise Edition Compuset Engine, allow remote attackers to...

6.8CVSS7.8AI score0.01296EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2013/11/21 2:0 a.m.38 views

CVE-2013-6177

Directory traversal vulnerability in EMC Document Sciences xPression 4.1 SP1 before Patch 47, 4.2 before Patch 26, and 4.5 before Patch 05, as used in Documentum Edition, Enterprise Edition Publish Engine, and Enterprise Edition Compuset Engine, allows remote authenticated users to read arbitrary...

6.2AI score0.02317EPSS
Exploits0References4
Cvelist
Cvelist
added 2013/11/21 2:0 a.m.44 views

CVE-2013-6175

Multiple cross-site scripting XSS vulnerabilities in EMC Document Sciences xPression 4.1 SP1 before Patch 47, 4.2 before Patch 26, and 4.5 before Patch 05, as used in Documentum Edition, Enterprise Edition Publish Engine, and Enterprise Edition Compuset Engine, allow remote attackers to inject...

5.8AI score0.02261EPSS
Exploits0References4
Cvelist
Cvelist
added 2013/11/21 2:0 a.m.38 views

CVE-2013-6176

Multiple SQL injection vulnerabilities in EMC Document Sciences xPression 4.1 SP1 before Patch 47, 4.2 before Patch 26, and 4.5 before Patch 05, as used in Documentum Edition, Enterprise Edition Publish Engine, and Enterprise Edition Compuset Engine, allow remote authenticated users to execute...

8.1AI score0.02177EPSS
Exploits0References4
CVE
CVE
added 2013/11/21 2:0 a.m.50 views

CVE-2013-6177

CVE-2013-6177 affects EMC Document Sciences xPression in versions 4.1 SP1 before Patch 47, 4.2 before Patch 26, and 4.5 before Patch 05 (Documentum Edition, Enterprise Edition Publish Engine, and Enterprise Edition Compuset Engine). Description: a Path Traversal vulnerability in xDashboard allows...

3.5CVSS6.4AI score0.02317EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2013/11/21 2:0 a.m.49 views

CVE-2013-6175

EMC Document Sciences xPression CVE-2013-6175 describes multiple XSS flaws in xAdmin and xDashboard that could allow an authenticated user to inject script/HTML via input. Affected versions include 4.1 SP1 prior to Patch 47, 4.2 prior to Patch 26, and 4.5 prior to Patch 05. The issues are part of...

4.3CVSS5.8AI score0.02261EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2013/11/21 2:0 a.m.52 views

CVE-2013-6174

EMC Document Sciences xPression contains an open redirect vulnerability (CVE-2013-6174) in the xAdmin application (and related xDashboard context) that could be exploited to redirect users to arbitrary sites for phishing. Affected versions are 4.1 SP1 before Patch 47, 4.2 before Patch 26, and 4.5...

5.8CVSS7AI score0.02403EPSS
Exploits0References5Affected Software1
CVE
CVE
added 2013/11/21 2:0 a.m.46 views

CVE-2013-6176

Affected product: EMC Document Sciences xPression (Documentum Edition, Enterprise Edition Publish Engine, and Enterprise Edition Compuset Engine) in versions 4.1 SP1 pre-Patch 47, 4.2 pre-Patch 26, and 4.5 pre-Patch 05. Vulnerability type: Multiple SQL injection vulnerabilities (CVE-2013-6176) af...

6.5CVSS8.2AI score0.02177EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2013/11/21 2:0 a.m.46 views

CVE-2013-6173

EMC Document Sciences xPression is affected by CSRF vulnerabilities (CVE-2013-6173) in xAdmin/xDashboard. Affected product lines: Enterprise Edition Publish Engine and Compuset Engine, and Documentum Edition. Versions: 4.1 SP1 before Patch 47, 4.2 before Patch 26, and 4.5 before Patch 05. Impact:...

6.8CVSS7.4AI score0.01296EPSS
Exploits0References5Affected Software1
Rows per page
Query Builder