CVSS: 10.0EPSS: 33%CPEs: 5EXPL: 1CVE-2011-5127 – Blue Coat Reporter - Directory Traversal
https://notcve.org/view.php?id=CVE-2011-5127
26 Aug 2012 — Directory traversal vulnerability in Blue Coat Reporter 9.x before 9.2.4.13, 9.2.5.x before 9.2.5.1, and 9.3 before 9.3.1.2 on Windows allows remote attackers to read arbitrary files, and consequently execute arbitrary code, via an unspecified HTTP request. Vulnerabilidad de ejecución directorio transversal en Blue Coat Reporter v9.x anterior v9.2.4.13, v9.2.5.x anterior a v9.2.5.1, y v9.3 anterior a v9.3.1.2 en Windows permite a atacantes remotos leer ficheros arbitrarios, y consecuentemente ejecutar códig... • https://www.exploit-db.com/exploits/17883 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 1CVE-2005-1708 – Blue Coat Reporter 7.0/7.1 - Privilege Escalation
https://notcve.org/view.php?id=CVE-2005-1708
24 May 2005 — templates.admin.users.user_form_processing in Blue Coat Reporter before 7.1.2 allows authenticated users to gain administrator privileges via an HTTP POST that sets volatile.user.administrator to true. • https://www.exploit-db.com/exploits/25697 •
CVSS: 9.1EPSS: 3%CPEs: 1EXPL: 1CVE-2005-1709 – Blue Coat Reporter 7.0/7.1 - License HTML Injection
https://notcve.org/view.php?id=CVE-2005-1709
24 May 2005 — Unknown vulnerability in Blue Coat Reporter before 7.1.2 allows remote unauthenticated attackers to add a license. • https://www.exploit-db.com/exploits/25698 •
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0CVE-2005-1710
https://notcve.org/view.php?id=CVE-2005-1710
24 May 2005 — Multiple cross-site scripting (XSS) vulnerabilities in Blue Coat Reporter before 7.1.2 allow remote attackers to inject arbitrary web script or HTML via (1) the username in an Add User window or (2) the license key (volatile.license_to_add parameter) in the Licensing page. • http://marc.info/?l=bugtraq&m=111695726810435&w=2 •