2 matches found
CVE-2007-6349
CVE-2007-6349 affects Perforce P4Web 2006.2 and earlier on Windows. The issue is a denial-of-service caused by a crafted HTTP request with a non-empty Content-Length but an empty body, which drives P4Webs.exe to consume up to high CPU usage remotely (no authentication required). The Symantec advi...
CVE-2013-1410
CVE-2013-1410 corresponds to multiple XSS vulnerabilities in Perforce P4web, affecting version 2011.1 and 2012.1. The included documents describe an issue where the web application fails to properly validate client-side data, enabling cross-site scripting. Public scoring from NVD indicates CVSS v...