NotCVE - vendor:"Fujitsu" product:"E-pares" version:"v01"

3 results (0.004 seconds)

CVSS: 4.3EPSS: 0%CPEs: 2EXPL: 0

CVE-2010-2150

https://notcve.org/view.php?id=CVE-2010-2150

Cross-site scripting (XSS) vulnerability Fujitsu e-Pares V01 L01 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Vulnerabilidad de secuencias de comandos en sitios cruzados (XSS) en Fujitsu e-Pares V01 L01 permite a atacantes remotos inyectar código web o HTML a través de vectores sin expecificar. • http://jvn.jp/en/jp/JVN58439007/index.html http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-000021.html http://secunia.com/advisories/40029 http://software.fujitsu.com/jp/security/vulnerabilities/jvn-36925871-58439007-82465391.html http://www.securityfocus.com/bid/40515 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 4.0EPSS: 0%CPEs: 6EXPL: 0

CVE-2010-2149

https://notcve.org/view.php?id=CVE-2010-2149

Session fixation vulnerability in Fujitsu e-Pares V01 L01, L03, L10, L20, L30 allows remote attackers to hijack web sessions via unspecified vectors. Vulnerabilidad de fijación de sesión de Fujitsu e-Pares V01 L01, L03, L10, L20, L30 permite a atacantes remotos secuestrar sesiones web a través de vectores sin expecificar. • http://jvn.jp/en/jp/JVN36925871/index.html http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-000023.html http://secunia.com/advisories/40029 http://software.fujitsu.com/jp/security/vulnerabilities/jvn-36925871-58439007-82465391.html http://www.securityfocus.com/bid/40513 • CWE-287: Improper Authentication •

CVSS: 2.6EPSS: 0%CPEs: 7EXPL: 0

CVE-2010-2151

https://notcve.org/view.php?id=CVE-2010-2151

Cross-site request forgery (CSRF) vulnerability in Fujitsu e-Pares V01 L01 V01 L01, L03, L10, L20, L30, and L40 allows remote attackers to hijack the authentication of users for requests that modify "facility reservation data" via unknown vectors. Vulnerabilidad de falsificación de petición en sitios cruzados (CSRF) en Fujitsu e-Pares V01 L01 V01 L01, L03, L10, L20, L30 y L40 permite a atacantes remotos secuestar la autenticación de otros usuarios para peticiones que modifican "datos reservados" a través de vectores desconocidos. • http://jvn.jp/en/jp/JVN82465391/index.html http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-000022.html http://secunia.com/advisories/40029 http://software.fujitsu.com/jp/security/vulnerabilities/jvn-36925871-58439007-82465391.html http://www.securityfocus.com/bid/40517 • CWE-352: Cross-Site Request Forgery (CSRF) •