Show filters
6 Total Results
Displaying 1-6 of 6
Sort by:
Attacker Value
Unknown
CVE-2015-4664
Disclosure Date: June 18, 2018 (last updated November 26, 2024)
An improper input validation vulnerability in CA Privileged Access Manager 2.4.4.4 and earlier allows remote attackers to execute arbitrary commands.
0
Attacker Value
Unknown
CVE-2015-4668
Disclosure Date: September 25, 2017 (last updated November 26, 2024)
Open redirect vulnerability in Xsuite 2.4.4.5 and earlier allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the redirurl parameter.
0
Attacker Value
Unknown
CVE-2015-4669
Disclosure Date: September 25, 2017 (last updated November 26, 2024)
The MySQL "root" user in Xsuite 2.x does not have a password set, which allows local users to access databases on the system.
0
Attacker Value
Unknown
CVE-2015-4667
Disclosure Date: September 25, 2017 (last updated November 26, 2024)
Multiple hardcoded credentials in Xsuite 2.x.
0
Attacker Value
Unknown
CVE-2015-4666
Disclosure Date: August 13, 2015 (last updated October 05, 2023)
Directory traversal vulnerability in opm/read_sessionlog.php in Xceedium Xsuite 2.4.4.5 and earlier allows remote attackers to read arbitrary files via a ....// (quadruple dot double slash) in the logFile parameter.
0
Attacker Value
Unknown
CVE-2015-4665
Disclosure Date: August 13, 2015 (last updated October 05, 2023)
Cross-site scripting (XSS) vulnerability in ajax_cmd.php in Xceedium Xsuite 2.4.4.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the fileName parameter.
0
