3 matches found
CVE-2005-0285
The CVE-2005-0285 entry concerns Webseries Payment Application with an improper restriction of privileged operations, allowing remote authenticated users to gain privileges by directly accessing privileged URLs. The primary impact is privilege escalation; no concrete remediation or fix details ar...
CVE-2005-0287
CVE-2005-0287 affects Bottomline Webseries Payment Application. A remote attacker can read arbitrary files on the network by supplying a modified ReportPath or ReportName in a report template, implying a path-leaking/authorization bypass in report handling. The provided metrics indicate partial c...
CVE-2005-0288
CVE-2005-0288 concerns the Bottomline Webseries Payment Application. The change-password function does not require the old password when setting a new one, which could allow an authenticated user to change other users’ passwords. The description provided does not specify affected versions/builds ...