EUVD-2008-0779

Malware in sbrugna...

CVE-2010-5283

Cross-site request forgery CSRF vulnerability in OpenText ECM formerly Livelink ECM 9.7.1 allows remote attackers to hijack the authentication of administrators for requests that change folder and resource permissions...

Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability in OpenText ECM formerly Livelink ECM 9.7.1 allows remote attackers to hijack the authentication of administrators for requests that change folder and resource permissions...

CVE-2010-5283

CVE-2010-5283 describes a cross-site request forgery (CSRF) in OpenText ECM (formerly Livelink ECM) 9.7.1 . The vulnerability allows remote attackers to hijack the authentication of administrators and perform requests that change folder and resource permissions. The primary sources confirm the af...

CVE-2010-5282

CVE-2010-5282 describes multiple cross-site scripting (XSS) vulnerabilities in OpenText ECM (formerly Livelink ECM) 9.7.1. The flaws allow remote attackers to inject arbitrary web script or HTML via parameters in the browser action (viewType, sort) to livelink/livelink, and via (nodeid, setctx, s...

OpenText LiveLink 9.7.1 Cross Site Request Forgery / Cross Site Scripting

Exploit Title: OpenText LiveLink multiple vulnerabilities CSRF, XSS Date: 22/06/2010 Author: Alejandro Ramos http://www.securitybydefault.com Software Link: http://www.opentext.com/ Version: 9.7.1 Tested on: Solaris Opentext NASDAQ OTEX LiveLink 9.7.1 Livelink features several advanced foundation...

OpenText LiveLink 9.7.1 - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/43420/info OpenText LiveLink is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting...

OpenText LiveLink 9.7.1 - Multiple Cross-Site Scripting Vulnerabilities

OpenText LiveLink 9.7.1 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/43420/info OpenText LiveLink is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these...

CVE-2008-0769

Cross-site scripting XSS vulnerability in Livelink ECM 9.0.0 through 9.7.0 and possibly earlier does not set the charset, which allows remote attackers to inject arbitrary web script or HTML via UTF-7 encoded input...

Cross site scripting

Cross-site scripting XSS vulnerability in Livelink ECM 9.0.0 through 9.7.0 and possibly earlier does not set the charset, which allows remote attackers to inject arbitrary web script or HTML via UTF-7 encoded input...

CVE-2008-0769

CVE-2008-0769 affects EMC Livelink ECM versions 9.0.0 through 9.7.0 (possibly earlier). The root cause is that the application does not set the character set, enabling cross-site scripting (XSS) via UTF-7 encoded input. Documented in multiple sources (NVD entry, CVE lists), it indicates an input‑...

CVE-2008-0769

Cross-site scripting XSS vulnerability in Livelink ECM 9.0.0 through 9.7.0 and possibly earlier does not set the charset, which allows remote attackers to inject arbitrary web script or HTML via UTF-7 encoded input...