17 matches found
EUVD-2014-4562
Malware in sbrugna...
EUVD-2014-4565
Malware in sbrugna...
CVE-2024-23641
SvelteKit is a web development kit. In SvelteKit 2, sending a GET request with a body eg to a built and previewed/hosted sveltekit app throws Request with GET/HEAD method cannot have body. and crashes the preview/hosting. After this happens, one must manually restart the app. TRACE requests will...
CVE-2014-4639
EMC Documentum Web Development Kit WDK before 6.8 does not properly generate random numbers for a certain parameter related to Webtop components, which makes it easier for remote attackers to conduct phishing attacks via brute-force attempts to predict the parameter value...
CVE-2014-4637
Open redirect vulnerability in EMC Documentum Web Development Kit WDK before 6.8 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via an unspecified parameter...
CVE-2014-4638
EMC Documentum Web Development Kit WDK before 6.8 allows remote attackers to conduct frame-injection attacks and obtain sensitive information via unspecified vectors...
CVE-2014-4636
Cross-site request forgery CSRF vulnerability in EMC Documentum Web Development Kit WDK before 6.8 allows remote attackers to hijack the authentication of arbitrary users for requests that perform Docbase operations...
CVE-2014-4635
Multiple cross-site scripting XSS vulnerabilities in EMC Documentum Web Development Kit WDK before 6.8 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in EMC Documentum Web Development Kit WDK before 6.8 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors...
Design/Logic Flaw
EMC Documentum Web Development Kit WDK before 6.8 does not properly generate random numbers for a certain parameter related to Webtop components, which makes it easier for remote attackers to conduct phishing attacks via brute-force attempts to predict the parameter value...
Open redirect
Open redirect vulnerability in EMC Documentum Web Development Kit WDK before 6.8 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via an unspecified parameter...
CVE-2014-4639
CVE-2014-4639 affects EMC Documentum Web Development Kit (WDK) before 6.8. The issue is insufficient randomness in a Webtop component parameter, enabling remote attackers to predict the parameter and carry out phishing via brute-force attempts. The ESA-2014-180 advisory lists this under multiple ...
CVE-2014-4638
EMC Documentum Web Development Kit WDK before 6.8 allows remote attackers to conduct frame-injection attacks and obtain sensitive information via unspecified vectors...
Multiple Cross-Site Scripting Vulnerabilities in EMC Documentum Web Development Kit (WDK)
The EMC Documentum Web Development Kit WDK is a Web development kit. The EMC Documentum Web Development Kit WDK contains multiple cross-site scripting vulnerabilities that could be exploited by an attacker to execute arbitrary script code in a browser without the user's knowledge in an affected...
Unspecified Framework Injection Vulnerability in EMC Documentum Web Development Kit (WDK)
The EMC Documentum Web Development Kit WDK is a Web development kit. An unspecified frame injection vulnerability exists in EMC Documentum Web Development Kit WDK, which can be exploited by attackers to conduct phishing attacks...
EMC Documentum Web Development Kit (WDK) URL Redirection Vulnerability
The EMC Documentum Web Development Kit WDK is a Web development kit. The EMC Documentum Web Development Kit WDK contains a URL redirection vulnerability that can be exploited by an attacker to construct URLs that contain malicious Web sites, which may be redirected to an attacker-controlled Web...
CHINANSL Security Advisory(CSA-200106)
Topic: JavaServer Web Dev KitJSWDK1.0.1 for win2000 Directory traversal Vulnerability vulnerable: Microsoft Win2000 ЎЎЎЎ+JSWDK1.0.1 maybe for other operating system also. discussion: A security vulnerability has been found in Windows NT/2000 systems that have JSWDK 1.0.1 installed.The vulnerabili...