Lucene search
K

9 matches found

securityvulns
securityvulns
added 2015/06/01 12:0 a.m.51 views

ESA-2015-087 EMC Document Sciences xPression SQL Injection Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2015-087 EMC Document Sciences xPression SQL Injection Vulnerability CVE Identifier: CVE-2015-0540 Severity Rating: CVSSv2 Base Score: 8.0 AV:N/AC:L/Au:S/C:P/I:P/A:C Affected products: • EMC Document Sciences xPression 4.2 • EMC Document Sciences...

6.5CVSS0.5AI score0.00991EPSS
Exploits0
CVE
CVE
added 2015/05/25 7:0 p.m.44 views

CVE-2015-0540

CVE-2015-0540 affects EMC Document Sciences xPression (xAdmin interface) 4.2 before P44 and 4.5 SP1 before P03. The issue is a SQL injection vulnerability in the xAdmin interface that could allow remote authenticated users to execute arbitrary SQL commands via unspecified vectors, potentially com...

6.5CVSS8.1AI score0.00991EPSS
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2013/12/09 12:0 a.m.121 views

ESA-2013-078: EMC Document Sciences xPression Multiple Vulnerabilities

ESA-2013-078.txt -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2013-078: EMC Document Sciences xPression Multiple Vulnerabilities EMC Identifier: ESA-2013-078 CVE Identifier: CVE-2013-6173, CVE-2013-6174, CVE-2013-6175, CVE-2013-6176, CVE-2013-6177 Severity Rating: CVSS v2 Base Score: See bel...

6.8CVSS7.4AI score0.02403EPSS
Exploits0
Prion
Prion
added 2013/11/21 4:40 a.m.23 views

Directory traversal

Directory traversal vulnerability in EMC Document Sciences xPression 4.1 SP1 before Patch 47, 4.2 before Patch 26, and 4.5 before Patch 05, as used in Documentum Edition, Enterprise Edition Publish Engine, and Enterprise Edition Compuset Engine, allows remote authenticated users to read arbitrary...

3.5CVSS6.8AI score0.02317EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2013/11/21 2:0 a.m.43 views

CVE-2013-6175

Multiple cross-site scripting XSS vulnerabilities in EMC Document Sciences xPression 4.1 SP1 before Patch 47, 4.2 before Patch 26, and 4.5 before Patch 05, as used in Documentum Edition, Enterprise Edition Publish Engine, and Enterprise Edition Compuset Engine, allow remote attackers to inject...

5.8AI score0.02261EPSS
Exploits0References4
CVE
CVE
added 2013/11/21 2:0 a.m.46 views

CVE-2013-6173

EMC Document Sciences xPression is affected by CSRF vulnerabilities (CVE-2013-6173) in xAdmin/xDashboard. Affected product lines: Enterprise Edition Publish Engine and Compuset Engine, and Documentum Edition. Versions: 4.1 SP1 before Patch 47, 4.2 before Patch 26, and 4.5 before Patch 05. Impact:...

6.8CVSS7.4AI score0.01296EPSS
Exploits0References5Affected Software1
CVE
CVE
added 2013/11/21 2:0 a.m.52 views

CVE-2013-6174

EMC Document Sciences xPression contains an open redirect vulnerability (CVE-2013-6174) in the xAdmin application (and related xDashboard context) that could be exploited to redirect users to arbitrary sites for phishing. Affected versions are 4.1 SP1 before Patch 47, 4.2 before Patch 26, and 4.5...

5.8CVSS7AI score0.02403EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2013/11/21 2:0 a.m.43 views

CVE-2013-6174

Multiple open redirect vulnerabilities in xAdmin in EMC Document Sciences xPression 4.1 SP1 before Patch 47, 4.2 before Patch 26, and 4.5 before Patch 05, as used in Documentum Edition, Enterprise Edition Publish Engine, and Enterprise Edition Compuset Engine, allow remote attackers to redirect...

6.9AI score0.02403EPSS
Exploits0References5
Cvelist
Cvelist
added 2013/11/21 2:0 a.m.37 views

CVE-2013-6176

Multiple SQL injection vulnerabilities in EMC Document Sciences xPression 4.1 SP1 before Patch 47, 4.2 before Patch 26, and 4.5 before Patch 05, as used in Documentum Edition, Enterprise Edition Publish Engine, and Enterprise Edition Compuset Engine, allow remote authenticated users to execute...

8.1AI score0.02177EPSS
Exploits0References4
Rows per page
Query Builder