2 matches found
Hyland Enterprise Search 11.2.2 Cross Site Scripting
The admin console's event viewer displays logged event data inside of tags. An attack string like "alert'hi'" in any place across Enterprise Search that will cause an error, like instead of a number or for the username on the login page or through the new Federated Authentication, will then be...
CVE-2008-2938
creationtimestamp| type| source ---|---|--- 2008-08-11 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/6229 2010-07-28 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/14489 2018-05-29 15:50:33+00:00| seen|...