Lucene search
K

16 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2006-5660

Malware in sbrugna...

10CVSS6.4AI score0.01413EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2009-5054

Malware in sbrugna...

4.3CVSS6.4AI score0.01128EPSS
Exploits1References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2009-5055

Malware in sbrugna...

2.1CVSS6.4AI score0.00409EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2009-5056

Malware in sbrugna...

5CVSS6.4AI score0.01135EPSS
Exploits1References5
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.14 views

Pentaho BI 1.x Multiple Cross Site Scripting and Information Disclosure Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/36672/info Pentaho BI is prone to multiple cross-site scripting and information-disclosure vulnerabilities because it fails to properly validate user-supplied input. An attacker may leverage these issues to execute...

7.1AI score
Exploits0
OpenVAS
OpenVAS
added 2011/09/22 12:0 a.m.24 views

Pentaho BI Server Multiple Vulnerabilities

The host is running Pentaho BI Server and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: secpodpentahobiservermultvuln.nasl 7044 2017-09-01 11:50:59Z teissa $ Pentaho BI Server Multiple Vulnerabilities Authors: Sooraj KS Copyright: Copyright c 2011 SecPod,...

5CVSS0.3AI score0.01135EPSS
Exploits3References4
NVD
NVD
added 2011/09/13 7:59 p.m.14 views

CVE-2009-5100

Pentaho BI Server 1.7.0.1062 and earlier does not set the autocomplete tag to off on web pages using a password field, which might allow physically proximate attackers to obtain the password...

2.1CVSS6.5AI score0.00409EPSS
Exploits1References3
NVD
NVD
added 2011/09/13 7:59 p.m.18 views

CVE-2009-5101

Pentaho BI Server 1.7.0.1062 and earlier includes the session ID JSESSIONID in the URL, which allows attackers to obtain it from session history, referer headers, or sniffing of web traffic...

5CVSS6.5AI score0.01135EPSS
Exploits1References3
NVD
NVD
added 2011/09/13 7:59 p.m.15 views

CVE-2009-5099

Cross-site scripting XSS vulnerability in ViewAction in Pentaho BI Server 1.7.0.1062 and earlier allows remote attackers to inject arbitrary web script or HTML via the outputType parameter...

4.3CVSS5.7AI score0.01128EPSS
Exploits1References5
Prion
Prion
added 2011/09/13 7:59 p.m.11 views

Session fixation

Pentaho BI Server 1.7.0.1062 and earlier includes the session ID JSESSIONID in the URL, which allows attackers to obtain it from session history, referer headers, or sniffing of web traffic...

5CVSS7AI score0.01135EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2011/09/13 7:0 p.m.47 views

CVE-2009-5099

The Connected documents confirm CVE-2009-5099 affects Pentaho BI Server (1.7.0.1062 and earlier) via a Cross‑Site Scripting vulnerability in the ViewAction component, exploitable through the outputType parameter. Root cause: insufficient input validation/sanitization of the outputType parameter a...

4.3CVSS5.9AI score0.01128EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2011/09/13 7:0 p.m.26 views

CVE-2009-5101

Pentaho BI Server 1.7.0.1062 and earlier includes the session ID JSESSIONID in the URL, which allows attackers to obtain it from session history, referer headers, or sniffing of web traffic...

6.4AI score0.01135EPSS
Exploits1References3
Cvelist
Cvelist
added 2011/09/13 7:0 p.m.20 views

CVE-2009-5099

Cross-site scripting XSS vulnerability in ViewAction in Pentaho BI Server 1.7.0.1062 and earlier allows remote attackers to inject arbitrary web script or HTML via the outputType parameter...

5.7AI score0.01128EPSS
Exploits1References5
exploitpack
exploitpack
added 2009/10/14 12:0 a.m.13 views

Pentaho BI 1.x - Multiple Cross-Site Scripting Information Disclosure Vulnerabilities

Pentaho BI 1.x - Multiple Cross-Site Scripting Information Disclosure Vulnerabilities source: https://www.securityfocus.com/bid/36672/info Pentaho BI is prone to multiple cross-site scripting and information-disclosure vulnerabilities because it fails to properly validate user-supplied input. An...

6.9AI score
Exploits0
Exploit DB
Exploit DB
added 2009/10/14 12:0 a.m.20 views

Pentaho BI 1.x - Multiple Cross-Site Scripting / Information Disclosure Vulnerabilities

source: https://www.securityfocus.com/bid/36672/info Pentaho BI is prone to multiple cross-site scripting and information-disclosure vulnerabilities because it fails to properly validate user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of ...

7.4AI score
Exploits0
Cvelist
Cvelist
added 2006/11/03 2:0 a.m.36 views

CVE-2006-5675

Multiple unspecified vulnerabilities in Pentaho Business Intelligence BI Suite before 1.2 RC3 1.2.0.470-RC3 have unknown impact and attack vectors, related to "MySQL Scripts need changes for security," possibly SQL injection vulnerabilities associated with these scripts...

7.9AI score0.01413EPSS
Exploits0References4
Rows per page
Query Builder