CVSS: 6.1EPSS: 0%CPEs: 8EXPL: 0CVE-2008-0769
https://notcve.org/view.php?id=CVE-2008-0769
13 Feb 2008 — Cross-site scripting (XSS) vulnerability in Livelink ECM 9.0.0 through 9.7.0 and possibly earlier does not set the charset, which allows remote attackers to inject arbitrary web script or HTML via UTF-7 encoded input. Vulnerabilidad de secuencias de comandos en sitios cruzados (XSS) en Livelink ECM versiones de la 9.0.0 a 9.7.0 y posiblemente anteriores, no asigna un conjunto de caracteres, que permite a atacantes remotos inyectar secuencias de comandos web o HTMLa través de entradas codificadas UTF-7. • http://lists.grok.org.uk/pipermail/full-disclosure/2008-January/059985.html • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 7.8EPSS: 8%CPEs: 2EXPL: 2CVE-2004-2496 – OpenText FirstClass 8.0 - HTTP Daemon /Search Remote Denial of Service
https://notcve.org/view.php?id=CVE-2004-2496
31 Dec 2004 — The HTTP daemon in OpenText FirstClass 7.1 and 8.0 allows remote attackers to cause a denial of service (service availability loss) via a large number of POST requests to /Search. • https://www.exploit-db.com/exploits/687 •
CVSS: 9.8EPSS: 1%CPEs: 1EXPL: 0CVE-2004-0037
https://notcve.org/view.php?id=CVE-2004-0037
08 Jan 2004 — FirstClass Desktop Client 7.1 allows remote attackers to execute arbitrary commands via hyperlinks in FirstClass RTF messages. FirstClass Desktop Client 7.1 permite a atacantes remotos ejecutar instrucciones arbitrarias mediante hiperenlaces en mensajes FirstClass RTF. • http://marc.info/?l=bugtraq&m=107340950611167&w=2 •