CVE-2013-2319

CVE-2013-2319 affects FileMaker Pro before 12 and Pro Advanced before 12, where SSL certificates from servers are not verified, enabling MITM disclosure of sensitive information via crafted certificates. The issue is tied to an incomplete fix for CVE-2013-2319 and has been acknowledged across mul...

CVE-2014-5321

Summary: CVE-2014-5321 affects FileMaker Pro before 13 and Pro Advanced before 13, which fail to verify X.509 certificates from SSL servers, enabling MITM attackers to spoof servers and access sensitive data. This vulnerability is noted as a consequence of an incorrect fix for CVE-2013-2319. Affe...

CVE-2013-3640

CVE-2013-3640 is an XSS vulnerability in FileMaker Pro’s Instant Web Publishing, affecting FileMaker Pro (before 12) and Pro Advanced (before 12). The issue allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Some connected sources note that subsequent advisori...

CVE-2014-5322

CVE-2014-5322 affects FileMaker Pro and Pro Advanced (Instant Web Publish) prior to version 13, with the vulnerability arising from an incomplete fix to CVE-2013-3640. The issue is a cross-site scripting (XSS) vulnerability that allows remote attackers to inject arbitrary web script or HTML via u...