21 matches found
EUVD-2017-11356
Malware in sbrugna...
EUVD-2017-11358
Malware in sbrugna...
EUVD-2017-11357
Malware in sbrugna...
Information-Technology Promotion Agency Empirical Project Monitor - eXtended Cross-Site Scripting Vulnerability
Information-Technology Promotion Agency Empirical Project Monitor - eXtended is a project progress monitoring software for the Information-Technology Promotion Agency in Japan. eXtended is a project progress monitoring software for the Information-Technology Promotion Agency in Japan. A cross-sit...
Information-Technology Promotion Agency Empirical Project Monitor - eXtended Cross-Site Scripting Vulnerability (CNVD-2017-07737)
Information-Technology Promotion Agency Empirical Project Monitor - eXtended is a project progress monitoring software for the Information-Technology Promotion Agency in Japan. eXtended is a project progress monitoring software for the Information-Technology Promotion Agency in Japan. A cross-sit...
CVE-2017-2174
Cross-site scripting vulnerability in Empirical Project Monitor - eXtended all versions allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
Design/Logic Flaw
Untrusted search path vulnerability in Empirical Project Monitor - eXtended all versions allows remote attackers to gain privileges via a Trojan horse DLL in an unspecified directory...
CVE-2017-2173
Cross-site scripting vulnerability in Empirical Project Monitor - eXtended all versions allows remote authenticated attackers to inject arbitrary web script or HTML via unspecified vectors...
Cross site scripting
Cross-site scripting vulnerability in Empirical Project Monitor - eXtended all versions allows remote authenticated attackers to inject arbitrary web script or HTML via unspecified vectors...
Cross site scripting
Cross-site scripting vulnerability in Empirical Project Monitor - eXtended all versions allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2017-2175
Untrusted search path vulnerability in Empirical Project Monitor - eXtended all versions allows remote attackers to gain privileges via a Trojan horse DLL in an unspecified directory...
CVE-2017-2173
Cross-site scripting vulnerability in Empirical Project Monitor - eXtended all versions allows remote authenticated attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2017-2175
Untrusted search path vulnerability in Empirical Project Monitor - eXtended all versions allows remote attackers to gain privileges via a Trojan horse DLL in an unspecified directory...
CVE-2017-2174
The CVE-2017-2174 entry corresponds to a reflected cross-site scripting vulnerability in Empirical Project Monitor - eXtended. All versions are affected; the flaw allows remote attackers to inject arbitrary web script or HTML and execute it in a victim’s browser via unspecified vectors. Public so...
CVE-2017-2173
CVE-2017-2173 corresponds to a stored cross-site scripting (CWE-79) vulnerability in the IPA’s Empirical Project Monitor - eXtended. The linked CNVD/JVN records describe a cross-site scripting flaw that can allow arbitrary script execution in a user’s browser. The JVN entries indicate the vulnera...
CVE-2017-2175
CVE-2017-2175 affects Empirical Project Monitor - eXtended. A DLL search-path vulnerability allows loading a Trojan horse DLL from an attacker-controlled directory, enabling privilege escalation/arbitrary code execution with the invoking user’s privileges during installation. No exploitation deta...
CVE-2017-2174
Cross-site scripting vulnerability in Empirical Project Monitor - eXtended all versions allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
The installer of Empirical Project Monitor - eXtended may insecurely load Dynamic Link Libraries
Overview The installer of Empirical Project Monitor - eXtended provided by INFORMATION-TECHNOLOGY PROMOTION AGENCY, JAPAN IPA contains an issue with the DLL search path, which may lead to insecurely loading Dynamic Link Libraries. Eili Masami of Tachibana Lab. reported this vulnerability to IPA...
JVN#85512750: Empirical Project Monitor - eXtended vulnerable to cross-site scripting
Empirical Project Monitor - eXtended provided by INFORMATION-TECHNOLOGY PROMOTION AGENCY, JAPAN IPA contains a stored cross-site scripting vulnerability CWE-79. Impact An arbitrary script may be executed on the user's web browser. Solution Do not use Empirical Project Monitor - eXtended The...
JVN#12493656: The installer of Empirical Project Monitor - eXtended may insecurely load Dynamic Link Libraries
The installer of Empirical Project Monitor - eXtended provided by INFORMATION-TECHNOLOGY PROMOTION AGENCY, JAPAN IPA contains an issue with the DLL search path, which may lead to insecurely loading Dynamic Link Libraries. Impact Arbitrary code may be executed with the privilege of the user invoki...