8 matches found
EUVD-2003-0395
Malware in sbrugna...
EUVD-2003-0394
Malware in sbrugna...
EUVD-2003-0397
Malware in sbrugna...
CVE-2003-0401
Vignette StoryServer and Vignette V/5 allows remote attackers to obtain sensitive information via a request for the /vgn/style template...
CVE-2003-0403
CVE-2003-0403 affects Vignette StoryServer 5 and Vignette V/5. Remote attackers can read and modify license information and cause a denial of service by directly accessing the /vgn/license template. The provided documents do not include root-cause analysis, affected versions beyond the products n...
CVE-2003-0399
CVE-2003-0399 affects Vignette StoryServer 4/5 and V/5 (and possibly other versions). The vulnerability allows remote attackers to perform unauthorized SELECT queries by setting the vgn_creds cookie to an arbitrary value and directly accessing the save template, indicating abuse of session/authen...
CVE-2003-0404
CVE-2003-0404 affects Vignette StoryServer 4/5 and Vignette V/5 and V/6. Vulnerability: multiple Cross Site Scripting (XSS) via text variables, demonstrated through the errInfo parameter in the default login template. Impact: remote attackers can inject arbitrary HTML and script. Exploitation det...
CVE-2003-0402
CVE-2003-0402 affects Vignette StoryServer 5 and Vignette V/5, where the default login template (/vgn/login) returns different responses depending on whether a user exists. This behavior allows remote attackers to identify valid usernames via brute force, enabling username enumeration. The NVD en...