Lucene search
K
TylertechTaxweb

4 matches found

CVE
CVE
added 2013/10/28 1:0 a.m.51 views

CVE-2013-6285

The vulnerability CVE-2013-6285 affects the Treasurer application’s search component in Tyler Technologies TaxWeb 3.13.3.1. It allows remote attackers to obtain sensitive query-structure information by sending an invalid search request. This is described as a separate issue from CVE-2013-6020. Th...

5CVSS6.3AI score0.01427EPSS
CVE
CVE
added 2013/10/28 1:0 a.m.48 views

CVE-2013-6020

The issue (CVE-2013-6020) affects Tyler Technologies TaxWeb 3.13.3.1 and its Password Reset flow (passwordRequestPOST.jsp). The root cause is that invalid password-recovery requests return different HTTP status codes depending on whether the target user exists, enabling remote attackers to enumer...

5.8CVSS6.7AI score0.01281EPSS
CVE
CVE
added 2013/10/28 1:0 a.m.46 views

CVE-2013-6019

CVE-2013-6019 affects Tyler Technologies TaxWeb 3.13.3.1. The Red Hat/NVD entries describe a reflected cross-site scripting vulnerability: an attacker can inject arbitrary HTML/script via the vulnerable accountNum parameter to an unspecified component. Impact stated across sources is that a remot...

4.3CVSS5.9AI score0.01012EPSS
CVE
CVE
added 2013/10/28 1:0 a.m.41 views

CVE-2013-6018

CVE-2013-6018 describes a cross-site request forgery (CSRF) vulnerability in Tyler Technologies’ TaxWeb 3.13.3.1, specifically affecting the login.jsp page. The issue allows a remote attacker to hijack the authentication of arbitrary users by inducing them to perform a password-changing action, i...

6.8CVSS7.4AI score0.00619EPSS