NotCVE - vendor:"Esri" product:"Arcgis Server" version:"

Page 3 of 23 results (0.007 seconds)

CVSS: 6.1EPSS: 0%CPEs: 3EXPL: 0

CVE-2014-9741

https://notcve.org/view.php?id=CVE-2014-9741

08 Jul 2015 — Multiple cross-site scripting (XSS) vulnerabilities in ESRI ArcGIS for Desktop, ArcGIS for Engine, and ArcGIS for Server 10.2.2 and earlier allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. Múltiples vulnerabilidades de XSS en ESRI ArcGIS Desktop, ArcGIS Engine, y ArcGIS Server 10.2.2 y anteriores permiten a atacantes remotos inyectar secuencias de comandos web arbitrarios o HTML a través de vectores no especificados. • http://blogs.esri.com/esri/arcgis/2014/09/04/arcgis-for-server-security-patch-10-1-sp1-qip-10-2-1-10-2-2 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0

CVE-2014-5122 – ArcGIS for Server 10.1.1 XSS / Open Redirect

https://notcve.org/view.php?id=CVE-2014-5122

21 Aug 2014 — Open redirect vulnerability in ESRI ArcGIS for Server 10.1.1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via an unspecified parameter, related to login. Vulnerabilidad de redirreción abierta en ESRI ArcGIS for Server 10.1.1 permite a atacantes remotos redirigir usuarios hacia sitios web arbitrarios y realizar ataques de phishing a través de un parámetro no especificado, relacionado con el inicio de sesión. ArcGIS for Server version 10.1.1 suffers from cross ... • http://packetstormsecurity.com/files/127959/ArcGIS-For-Server-10.1.1-XSS-Open-Redirect.html •

CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0

CVE-2014-5121 – ArcGIS for Server 10.1.1 XSS / Open Redirect

https://notcve.org/view.php?id=CVE-2014-5121

21 Aug 2014 — Multiple cross-site scripting (XSS) vulnerabilities in ESRI ArcGIS for Server 10.1.1 allow remote attackers to inject arbitrary web script or HTML via unspecified parameters. Múltiples vulnerabilidades de XSS en ESRI ArcGIS for Server 10.1.1 permiten a atacantes remotos inyectar secuencias de comandos web o HTML arbitrarios a través de parámetros no especificados. ArcGIS for Server version 10.1.1 suffers from cross site scripting and open redirect vulnerabilities. • http://packetstormsecurity.com/files/127959/ArcGIS-For-Server-10.1.1-XSS-Open-Redirect.html • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

1 2 3