Showing 1 - 1 of 1

CVE-2013-6173

Status Candidate

Overview

Multiple cross-site request forgery (CSRF) vulnerabilities in EMC Document Sciences xPression 4.1 SP1 before Patch 47, 4.2 before Patch 26, and 4.5 before Patch 05, as used in Documentum Edition, Enterprise Edition Publish Engine, and Enterprise Edition Compuset Engine, allow remote attackers to hijack the authentication of administrators for requests that perform administrative actions in (1) xAdmin or (2) xDashboard.

Related Files

EMC Document Sciences xPression XSS / CSRF / Redirect / SQL Injection: Posted Nov 19, 2013; Authored by Sertan Kolat, Omer Coskun | Site emc.com; EMC Document Sciences xPression suffers from cross site request forgery, cross site scripting, remote SQL injection, open redirect, and directory traversal vulnerabilities.; tags | advisory, remote, vulnerability, xss, sql injection, csrf; advisories | CVE-2013-6173, CVE-2013-6174, CVE-2013-6175, CVE-2013-6176, CVE-2013-6177; SHA-256 | e9ad599fa7aadd0343497f514a3525982b44b99c5dceb2b4c2ce1bfed295fcc7; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 218 files
indoushka 133 files
Ubuntu 82 files
Gentoo 33 files
Debian 26 files
Jasper Nota 25 files
Willem Westerhof 19 files
Jim Blankendaal 11 files
Martijn Baalman 9 files
Sebastian Hamann 8 files

File Archives

Systems

AIX (429)
Apple (2,099)
BSD (377)
CentOS (58)
Cisco (1,927)
Debian (7,110)
Fedora (1,693)
FreeBSD (1,246)
Gentoo (4,567)
HPUX (880)
iOS (378)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (50,919)
Mac OS X (691)
Mandriva (3,105)
NetBSD (256)
OpenBSD (489)
RedHat (16,636)
Slackware (941)
Solaris (1,611)
SUSE (1,444)
Ubuntu (9,782)
UNIX (9,441)
UnixWare (187)
Windows (6,677)
Other

CVE-2013-6173

Overview

Related Files

File Archive:

August 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems