Lucene search
K
MicrosoftContent Management Server

6 matches found

CVE
CVE
added 2007/04/10 9:0 p.m.61 views

CVE-2007-0939

CVE-2007-0939 is an XSS vulnerability in Microsoft Content Management Server (MCMS) 2001 SP1 and 2002 SP2. The issue arises from MCMS not fully validating input in HTML redirect queries, allowing remote attackers to inject script or HTML that runs in a user’s browser. Exploitation requires user i...

4.3CVSS5.4AI score0.16186EPSS
CVE
CVE
added 2007/04/10 9:0 p.m.58 views

CVE-2007-0938

CVE-2007-0938 describes a remote code execution vulnerability in Microsoft Content Management Server (MCMS) 2001 SP1 and 2002 SP2, caused by improper handling of certain characters in crafted HTTP requests. The CMS Memory Corruption vulnerability could allow an attacker to take control of an affe...

10CVSS7.1AI score0.45633EPSS
CVE
CVE
added 2003/04/02 5:0 a.m.46 views

CVE-2002-0719

CVE-2002-0719 is a SQL injection vulnerability in Microsoft Content Management Server (MCMS) 2001, affecting the function that services MCMS image/file requests. It allows remote attackers to execute arbitrary commands via crafted resource requests. Exploitation details indicate network-based acc...

7.5CVSS8.3AI score0.10424EPSS
CVE
CVE
added 2003/04/02 5:0 a.m.45 views

CVE-2002-0700

This CVE concerns Microsoft Content Management Server (MCMS) 2001, where a buffer overflow in the Profile Service (an MDAC-related function used during user authentication) can allow an attacker to execute code in the Local System context by authenticating to a vulnerable web page. The issue is c...

7.5CVSS7.8AI score0.07882EPSS
CVE
CVE
added 2004/09/01 4:0 a.m.44 views

CVE-2003-0002

The CVE-2003-0002 entry concerns a Cross-site scripting (XSS) vulnerability in Microsoft Content Management Server (MCMS) 2001, specifically in the ManualLogin.asp script. The issue allows remote attackers to inject and execute arbitrary script through the REASONTXT parameter. The incident is doc...

6.8CVSS6.8AI score0.23332EPSS
CVE
CVE
added 2003/04/02 5:0 a.m.39 views

CVE-2002-0718

CVE-2002-0718 affects Microsoft Content Management Server (MCMS) 2001. The vulnerability lies in the Web authoring function, allowing an attacker to authenticate and upload executable content by modifying the upload location (Program Execution via MCMS Authoring Function). Related data in the con...

7.5CVSS6.8AI score0.05964EPSS