7 matches found
CVE-2023-24466
Possible XML External Entity Injection in iManager GET parameter has been discovered in OpenText™ iManager 3.2.6.0200...
CVE-2023-24466
CVE-2023-24466 affects OpenText iManager 3.2.6.0200 with a possible XML External Entity Injection via the iManager GET parameter. The vulnerability is described across multiple sources as enabling an attack with high impact on confidentiality, integrity, and availability (per NVD and related CVSS...
CVE-2024-3969 XML External Entity injection vulnerability in iManager
XML External Entity injection vulnerability found in OpenText™ iManager 3.2.6.0200. This could lead to remote code execution by parsing untrusted XML payload...
CVE-2024-3488 File Upload vulnerability in unauthenticated session found in iManager.
File Upload vulnerability in unauthenticated session found in OpenText™ iManager 3.2.6.0200. The vulnerability could allow ant attacker to upload a file without authentication...
CVE-2024-3486
CVE-2024-3486 describes an XML External Entity (XXE) injection vulnerability in OpenText iManager 3.2.6.0200. Public sources consistently identify the affected component as iManager, with the root cause being an XXE flaw that could enable information disclosure and remote code execution. The NVD ...
CVE-2024-3485 Server-Side Request Forgery vulnerability in iManager
Server Side Request Forgery vulnerability has been discovered in OpenText™ iManager 3.2.6.0200. This could lead to senstive information disclosure...
CVE-2024-3483 Remote Code Execution vulnerability in the iManager
Remote Code Execution has been discovered in OpenText™ iManager 3.2.6.0200. The vulnerability can trigger command injection and insecure deserialization issues...