Lucene search
K

23 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 10:10 a.m.6 views

CVE-2019-11651

Reflected XSS on Micro Focus Enterprise Developer and Enterprise Server, all versions prior to version 3.0 Patch Update 20, version 4.0 Patch Update 12, and version 5.0 Patch Update 2. The vulnerability could be exploited to redirect a user to a malicious page or forge certain types of web reques...

6.1CVSS6AI score0.00785EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2017-16448

Malware in sbrugna...

6.5CVSS6.6AI score0.01785EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2017-16447

Malware in sbrugna...

8.8CVSS8.8AI score0.00751EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2020-30330

Malware in sbrugna...

5.4CVSS5.6AI score0.0051EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2017-16446

Malware in sbrugna...

5.4CVSS5.5AI score0.0097EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 5:34 p.m.14 views

CVE-2020-9524

Cross Site scripting vulnerability on Micro Focus Enterprise Server and Enterprise developer, affecting all versions prior to version 5.0 Patch Update 8. The vulnerability could allow an attacker to trigger administrative actions when an administrator viewed malicious data left by the attacker...

5.4CVSS6.5AI score0.0051EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/07/20 12:0 a.m.6 views

Micro Focus Enterprise Developer 安全漏洞

Micro Focus Enterprise Developer is a suite of integrated development environments for mainframe application development from Micro Focus in the UK. A security vulnerability exists in Enterprise Server, Enterprise Test Server, Enterprise Developer, Visual COBOL and COBOL Server, which stems from ...

7.1CVSS6.5AI score0.00382EPSS
Exploits0References2
OSV
OSV
added 2020/05/18 2:15 p.m.4 views

CVE-2020-9524

Cross Site scripting vulnerability on Micro Focus Enterprise Server and Enterprise developer, affecting all versions prior to version 5.0 Patch Update 8. The vulnerability could allow an attacker to trigger administrative actions when an administrator viewed malicious data left by the attacker...

5.4CVSS6.1AI score0.0051EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/05/18 1:19 p.m.29 views

CVE-2020-9524

Cross Site scripting vulnerability on Micro Focus Enterprise Server and Enterprise developer, affecting all versions prior to version 5.0 Patch Update 8. The vulnerability could allow an attacker to trigger administrative actions when an administrator viewed malicious data left by the attacker...

5.3AI score0.0051EPSS
Exploits0References1
NVD
NVD
added 2019/10/02 9:15 p.m.23 views

CVE-2019-11651

Reflected XSS on Micro Focus Enterprise Developer and Enterprise Server, all versions prior to version 3.0 Patch Update 20, version 4.0 Patch Update 12, and version 5.0 Patch Update 2. The vulnerability could be exploited to redirect a user to a malicious page or forge certain types of web reques...

6.1CVSS6AI score0.00785EPSS
Exploits0References1
Prion
Prion
added 2018/10/12 1:29 p.m.23 views

Null pointer dereference

Incorrect handling of an invalid value for an HTTP request parameter by Directory Server aka Enterprise Server Administration web UI in Micro Focus Enterprise Developer and Enterprise Server 2.3 Update 2 and earlier, 3.0 before Patch Update 12, and 4.0 before Patch Update 2 causes a null pointer...

5CVSS7.4AI score0.01054EPSS
Exploits0References1Affected Software2
NVD
NVD
added 2018/10/12 1:29 p.m.10 views

CVE-2018-12469

Incorrect handling of an invalid value for an HTTP request parameter by Directory Server aka Enterprise Server Administration web UI in Micro Focus Enterprise Developer and Enterprise Server 2.3 Update 2 and earlier, 3.0 before Patch Update 12, and 4.0 before Patch Update 2 causes a null pointer...

7.5CVSS7.5AI score0.01054EPSS
Exploits0References1
CNVD
CNVD
added 2017/08/22 12:0 a.m.4 views

Micro Focus Enterprise Developer and Enterprise Server Cross-Site Scripting Vulnerability

Micro Focus Enterprise Developer and Enterprise Server are both products of Micro Focus, a British company.Micro Focus Enterprise Developer is a set of integrated development environments for the mainframe.Enterprise Server is a production deployment platform for mainframe programs. Enterprise...

5.4CVSS5.3AI score0.0097EPSS
Exploits0References1
OSV
OSV
added 2017/08/21 3:29 p.m.3 views

CVE-2017-7422

Reflected and stored Cross-Site Scripting XSS, CWE-79 vulnerabilities in esfadmingui in Micro Focus Enterprise Developer and Enterprise Server 2.3, 2.3 Update 1 before Hotfix 8, and 2.3 Update 2 before Hotfix 9 allow remote authenticated attackers to bypass protection mechanisms CWE-693 and other...

5.4CVSS5.8AI score0.0097EPSS
Exploits0References1
NVD
NVD
added 2017/08/21 3:29 p.m.16 views

CVE-2017-5187

A Cross-Site Request Forgery CWE-352 vulnerability in Directory Server aka Enterprise Server Administration web UI in Micro Focus Enterprise Developer and Enterprise Server 2.3 and earlier, 2.3 Update 1 before Hotfix 8, and 2.3 Update 2 before Hotfix 9 allows remote unauthenticated attackers to...

8.8CVSS8.7AI score0.00751EPSS
Exploits0References1
Prion
Prion
added 2017/08/21 3:29 p.m.14 views

Path traversal

A Path Traversal CWE-22 vulnerability in esfadmingui in Micro Focus Enterprise Developer and Enterprise Server 2.3, 2.3 Update 1 before Hotfix 8, and 2.3 Update 2 before Hotfix 9 allows remote authenticated users to download arbitrary files from a system running the product, if this component is...

4CVSS6.2AI score0.01785EPSS
Exploits0References1Affected Software2
NVD
NVD
added 2017/08/21 3:29 p.m.22 views

CVE-2017-7423

A Cross-Site Request Forgery CWE-352 vulnerability in esfadmingui in Micro Focus Enterprise Developer and Enterprise Server 2.3, 2.3 Update 1 before Hotfix 8, and 2.3 Update 2 before Hotfix 9 allows remote unauthenticated attackers to forge requests, if this component is configured. This includes...

8.8CVSS8.7AI score0.00751EPSS
Exploits0References1
Prion
Prion
added 2017/08/21 3:29 p.m.14 views

Cross site request forgery (csrf)

A Cross-Site Request Forgery CWE-352 vulnerability in Directory Server aka Enterprise Server Administration web UI in Micro Focus Enterprise Developer and Enterprise Server 2.3 and earlier, 2.3 Update 1 before Hotfix 8, and 2.3 Update 2 before Hotfix 9 allows remote unauthenticated attackers to...

6.8CVSS8.6AI score0.00751EPSS
Exploits0References1Affected Software2
NVD
NVD
added 2017/08/21 3:29 p.m.22 views

CVE-2017-7422

Reflected and stored Cross-Site Scripting XSS, CWE-79 vulnerabilities in esfadmingui in Micro Focus Enterprise Developer and Enterprise Server 2.3, 2.3 Update 1 before Hotfix 8, and 2.3 Update 2 before Hotfix 9 allow remote authenticated attackers to bypass protection mechanisms CWE-693 and other...

5.4CVSS5.5AI score0.0097EPSS
Exploits0References1
NVD
NVD
added 2017/08/21 3:29 p.m.14 views

CVE-2017-7420

An Authentication Bypass CWE-287 vulnerability in ESMAC aka Enterprise Server Monitor and Control in Micro Focus Enterprise Developer and Enterprise Server 2.3 and earlier, 2.3 Update 1 before Hotfix 8, and 2.3 Update 2 before Hotfix 9 allows remote unauthenticated attackers to view and alter...

9.8CVSS9.4AI score0.02444EPSS
Exploits0References1
Rows per page
Query Builder