Webintelligence Security Vulnerabilities and Issues — Webintelligence CVE List

BusinessobjectsWebintelligence

4 matches found

CVE•added 2005/04/14 4:0 a.m.•46 views

CVE-2004-0533

CVE-2004-0533 describes a vulnerability in Business Objects WebIntelligence 2.7.0–2.7.4 where client-side access controls allow an authenticated user to bypass restrictions and delete arbitrary server documents via a crafted InfoView delete request. The root cause is the lack of server-side enfor...

2.1CVSS6.4AI score0.00205EPSS

CVE•added 2005/04/14 4:0 a.m.•38 views

CVE-2004-0534

CVE-2004-0534 is a documented XSS in Business Objects InfoView 5.1.4–5.1.8 / WebIntelligence 2.7.0–2.7.4. The root cause is incomplete server‑side validation for the document name during upload, allowing arbitrary script/HTML via the filename. Impact: remote attacker can inject script, potentiall...

4.3CVSS5.7AI score0.00547EPSS

CVE•added 2005/12/15 11:0 p.m.•38 views

CVE-2005-4274

CVE-2005-4274 affects Business Objects WebIntelligence 6.5x. The vulnerability permits remote attackers to cause a denial of service (user account lockout) via unknown attack vectors related to authentication mechanisms and form input. The available sources describe the issue but do not provide c...

5CVSS6.9AI score0.00779EPSS

CVE•added 2005/11/16 7:37 a.m.•35 views

CVE-2003-1249

CVE-2003-1249 affects WebIntelligence 2.7.1, where guessable user session cookies enable remote attackers to hijack sessions . The description specifies the vulnerability type as session hijacking due to predictable cookies; no additional technical details (e.g., exact cookie mechanism, versions ...

7.5CVSS7.1AI score0.01373EPSS