Search Results | AttackerKB

Show filters

Clear All

Disclosure Year Disclosure Month

Collection Command and Control Credential Access Defense Evasion Discovery Execution Exfiltration Impact Initial Access Lateral Movement Persistence Privilege Escalation

2 Total Results

Displaying 1-2 of 2

Attacker Value

Unknown

CVE-2014-2947

Disclosure Date: May 22, 2014 (last updated October 05, 2023)

Cross-site scripting (XSS) vulnerability in Login.aspx in Bizagi BPM Suite before 10.3 allows remote attackers to inject arbitrary web script or HTML via the txtUsername parameter.

Attacker Value

Unknown

CVE-2014-2948

Disclosure Date: May 22, 2014 (last updated October 05, 2023)

SQL injection vulnerability in workflowenginesoa.asmx in Bizagi BPM Suite through 10.4 allows remote authenticated users to execute arbitrary SQL commands via a crafted SOAP request.

2 Total Results

Displaying 1-2 of 2

Unknown

CVE-2014-2947

Unknown

CVE-2014-2948

Quick Cookie Notification