Vignette : Security Vulnerabilities, CVEs, Published In 2003 CVSS score >= 6
Vignette StoryServer 5 and Vignette V/5 allows remote attackers to read and modify license information, and cause a denial of service (service halt) by directly accessing the /vgn/license template.
Max CVSS
7.5
EPSS Score
0.79%
Published
2003-06-30
Updated
2016-10-18
Vignette StoryServer 4 and 5, Vignette V/5, and possibly other versions allows remote attackers to perform unauthorized SELECT queries by setting the vgn_creds cookie to an arbitrary value and directly accessing the save template.
Max CVSS
6.4
EPSS Score
0.38%
Published
2003-07-02
Updated
2016-10-18
Vignette StoryServer 4 and 5, and Vignette V/5 and V/6, with the SSI EXEC feature enabled, allows remote attackers to execute arbitrary code via a text variable to a Vignette Application that is later displayed.
Max CVSS
7.5
EPSS Score
1.79%
Published
2003-07-02
Updated
2016-10-18
3 vulnerabilities found