VYPR
Get started
← All advisories
Unrated severityNVD Advisory· Published Nov 6, 2013· Updated Apr 29, 2026

CVE-2013-3281

CVE-2013-3281

Description

Cross-site scripting (XSS) vulnerability in EMC Documentum Webtop before 6.7 SP2 P07, Documentum WDK before 6.7 SP2 P07, Documentum Taskspace before 6.7 SP2 P07, Documentum Records Manager before 6.7 SP2 P07, Documentum Web Publisher before 6.5 SP7, Documentum Digital Asset Manager before 6.5 SP6, Documentum Administrator before 6.7 SP2 P07, and Documentum Capital Projects before 1.8 P01 allows remote attackers to inject arbitrary web script or HTML via a crafted parameter in a URL.

Affected products

26
  • EMC Corporation/Documentum Wdk3 versions
    cpe:2.3:a:emc:documentum_wdk:6.7:sp1:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:emc:documentum_wdk:6.7:sp1:*:*:*:*:*:*
    • cpe:2.3:a:emc:documentum_wdk:*:sp2:*:*:*:*:*:*range: <=6.7
    • cpe:2.3:a:emc:documentum_wdk:6.7:*:*:*:*:*:*:*
  • EMC Corporation/Documentum Digital Asset Manager6 versions
    cpe:2.3:a:emc:documentum_digital_asset_manager:*:sp5:*:*:*:*:*:*+ 5 more
    • cpe:2.3:a:emc:documentum_digital_asset_manager:*:sp5:*:*:*:*:*:*range: <=6.5
    • cpe:2.3:a:emc:documentum_digital_asset_manager:6.5:*:*:*:*:*:*:*
    • cpe:2.3:a:emc:documentum_digital_asset_manager:6.5:sp1:*:*:*:*:*:*
    • cpe:2.3:a:emc:documentum_digital_asset_manager:6.5:sp2:*:*:*:*:*:*
    • cpe:2.3:a:emc:documentum_digital_asset_manager:6.5:sp3:*:*:*:*:*:*
    • cpe:2.3:a:emc:documentum_digital_asset_manager:6.5:sp4:*:*:*:*:*:*
  • EMC Corporation/Documentum Taskspace3 versions
    cpe:2.3:a:emc:documentum_taskspace:*:sp2:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:emc:documentum_taskspace:*:sp2:*:*:*:*:*:*range: <=6.7
    • cpe:2.3:a:emc:documentum_taskspace:6.7:*:*:*:*:*:*:*
    • cpe:2.3:a:emc:documentum_taskspace:6.7:sp1:*:*:*:*:*:*
  • EMC Corporation/Documentum Capital Projects
    cpe:2.3:a:emc:documentum_capital_projects:*:*:*:*:*:*:*:*
    Range: <=1.8
  • EMC Corporation/Documentum Administrator3 versions
    cpe:2.3:a:emc:documentum_administrator:*:sp2:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:emc:documentum_administrator:*:sp2:*:*:*:*:*:*range: <=6.7
    • cpe:2.3:a:emc:documentum_administrator:6.7:*:*:*:*:*:*:*
    • cpe:2.3:a:emc:documentum_administrator:6.7:sp1:*:*:*:*:*:*
  • EMC Corporation/Documentum Webtop3 versions
    cpe:2.3:a:emc:documentum_webtop:*:sp2:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:emc:documentum_webtop:*:sp2:*:*:*:*:*:*range: <=6.7
    • cpe:2.3:a:emc:documentum_webtop:6.7:*:*:*:*:*:*:*
    • cpe:2.3:a:emc:documentum_webtop:6.7:sp1:*:*:*:*:*:*
  • EMC Corporation/Documentum Web Publisher7 versions
    cpe:2.3:a:emc:documentum_web_publisher:*:sp6:*:*:*:*:*:*+ 6 more
    • cpe:2.3:a:emc:documentum_web_publisher:*:sp6:*:*:*:*:*:*range: <=6.5
    • cpe:2.3:a:emc:documentum_web_publisher:6.5:*:*:*:*:*:*:*
    • cpe:2.3:a:emc:documentum_web_publisher:6.5:sp1:*:*:*:*:*:*
    • cpe:2.3:a:emc:documentum_web_publisher:6.5:sp2:*:*:*:*:*:*
    • cpe:2.3:a:emc:documentum_web_publisher:6.5:sp3:*:*:*:*:*:*
    • cpe:2.3:a:emc:documentum_web_publisher:6.5:sp4:*:*:*:*:*:*
    • cpe:2.3:a:emc:documentum_web_publisher:6.5:sp5:*:*:*:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

2

News mentions

0

No linked articles in our index yet.