Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
EmcDocumentum Eroom7.3.0

4 matches found

CVE
CVEadded 2012/03/15 12:55 a.m.39 views

CVE-2012-0398

EMC Documentum eRoom before 7.4.4 does not properly validate session cookies, which allows remote attackers to hijack or replay sessions via unspecified vectors.

7.5CVSS6.9AI score0.0046EPSS
CVE
CVEadded 2013/11/06 3:55 p.m.39 views

CVE-2013-3286

Multiple cross-site scripting (XSS) vulnerabilities in EMC Documentum eRoom before 7.4.4 P11 allow remote attackers to inject arbitrary web script or HTML via a crafted URL.

4.3CVSS5.7AI score0.00225EPSS
CVE
CVEadded 2012/03/15 12:55 a.m.36 views

CVE-2012-0404

Cross-site scripting (XSS) vulnerability in EMC Documentum eRoom before 7.4.4 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

4.3CVSS5.8AI score0.00225EPSS
CVE
CVEadded 2011/11/09 11:55 p.m.26 views

CVE-2011-2739

The file-blocking feature in EMC Documentum eRoom 7.3.x and 7.4.x before 7.4.3.g does not properly restrict the uploading and opening of files with dangerous file types, which allows remote authenticated users to execute arbitrary code via an uploaded file.

8.5CVSS7.5AI score0.01574EPSS