Описание
Serena TeamTrack 6.1.1 allows remote attackers to obtain sensitive information such as user names, versions, and database information, and conduct cross-site scripting (XSS) attacks, via a direct request to tmtrack.dll with modified LoginPage and Template parameters.
Serena TeamTrack 6.1.1 allows remote attackers to obtain sensitive information such as user names, versions, and database information, and conduct cross-site scripting (XSS) attacks, via a direct request to tmtrack.dll with modified LoginPage and Template parameters.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2004-2563
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16771
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16777
- http://secunia.com/advisories/12122
- http://www.osvdb.org/8182
- http://www.osvdb.org/8183
- http://www.osvdb.org/8185
- http://www.securiteam.com/windowsntfocus/5SP0O0ADGG.html
- http://www.securityfocus.com/bid/10770
EPSS
CVE ID
Связанные уязвимости
Serena TeamTrack 6.1.1 allows remote attackers to obtain sensitive information such as user names, versions, and database information, and conduct cross-site scripting (XSS) attacks, via a direct request to tmtrack.dll with modified LoginPage and Template parameters.
EPSS