CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Ibm: >> Enovia Smarteam >> 5 Security Vulnerabilities

CVE-2010-0959

Cross-site scripting (XSS) vulnerability in WebEditor/Authentication/LoginPage.aspx in IBM ENOVIA SmarTeam 5 allows remote attackers to inject arbitrary web script or HTML via the errMsg parameter.

CVSS Score

4.3

EPSS Score

0.003

Published

2010-03-10

CVE-2008-4581

The Editor in IBM ENOVIA SmarTeam 5 before release 18 SP5, and release 19 before SP01, allows remote authenticated users to bypass intended access restrictions and read Document objects via the Workflow Process (aka Flow Process) view.

CVSS Score

4.0

EPSS Score

0.002

Published

2008-10-15

Page 1

Vulnerabilities

Vulnerable Software

Ibm: >> Enovia Smarteam >> 5 Security Vulnerabilities

Products

Pricing

Contact Us