13 matches found
EUVD-2015-2440
Malware in sbrugna...
EUVD-2015-2439
Malware in sbrugna...
Huawei SEQ Analyst XML External Entity Vulnerability
Huawei SEQ Analyst is Huawei's platform for monitoring service quality and managing relationships between individual users and multiple suppliers. The platform provides functions such as service debugging, user complaint handling, troubleshooting, user experience management, and deployment of...
CVE-2015-2346
XML external entity XXE vulnerability in Huawei SEQ Analyst before V200R002C03LG0001CP0022 allows remote authenticated users to read arbitrary files via the req parameter...
Xxe
XML external entity XXE vulnerability in Huawei SEQ Analyst before V200R002C03LG0001CP0022 allows remote authenticated users to read arbitrary files via the req parameter...
CVE-2015-2346
Vulnerability: CVE-2015-2346 is an XXE flaw in Huawei SEQ Analyst prior to V200R002C03LG0001CP0022. An authenticated remote attacker can read arbitrary files via the req parameter. Affected product: Huawei SEQ Analyst. Root cause: XML External Entity processing. Impact: unauthorized file disclosu...
CVE-2015-2346
XML external entity XXE vulnerability in Huawei SEQ Analyst before V200R002C03LG0001CP0022 allows remote authenticated users to read arbitrary files via the req parameter...
CVE-2015-2347
Cross-site scripting XSS vulnerability in Huawei SEQ Analyst before V200R002C03LG0001CP0022 allows remote attackers to inject arbitrary web script or HTML via the command XML element in the req parameter to flexdata.action in 1 common/, 2 monitor/, or 3 psnpm/ or the 4 module XML element in the r...
Cross site scripting
Cross-site scripting XSS vulnerability in Huawei SEQ Analyst before V200R002C03LG0001CP0022 allows remote attackers to inject arbitrary web script or HTML via the command XML element in the req parameter to flexdata.action in 1 common/, 2 monitor/, or 3 psnpm/ or the 4 module XML element in the r...
CVE-2015-2347
Cross-site scripting XSS vulnerability in Huawei SEQ Analyst before V200R002C03LG0001CP0022 allows remote attackers to inject arbitrary web script or HTML via the command XML element in the req parameter to flexdata.action in 1 common/, 2 monitor/, or 3 psnpm/ or the 4 module XML element in the r...
CVE-2015-2347
CVE-2015-2347 affects Huawei SEQ Analyst, prior to version V200R002C03LG0001CP0022. The vulnerability is a Cross-Site Scripting (XSS) flaw that allows remote attackers to inject arbitrary web script or HTML by manipulating the command XML element in the req parameter to flexdata.action (in paths:...
Huawei SEQ Analyst XXE Injection
Document Title: ============ Huawei SEQ Analyst - XML External Entity Injection XXE Release Date: =========== 15 Apr 2015 CVE-ID: ======= CVE-2015-2346 Product & Service Introduction: ======================= SEQ Analyst is a platform for business quality monitoring and management by individual us...
Huawei SEQ Analyst Cross Site Scripting
Document Title: ============ Huawei SEQ Analyst - Multiple Reflected Cross Site Scripting XSS Release Date: =========== 15 Apr 2015 CVE-ID: ======= CVE-2015-2347 Product & Service Introduction: ======================= SEQ Analyst is a platform for business quality monitoring and management by...