VYPR

iManager

by Opentext

CVEs (21)

  • CVE-2023-24467HigNov 22, 2024
    risk 0.57cvss 8.8epss 0.01

    Possible Command Injection in iManager GET parameter has been discovered in OpenText™ iManager 3.2.6.0000.

  • CVE-2021-38117HigNov 22, 2024
    risk 0.57cvss 8.8epss 0.01

    Possible Command injection Vulnerability in iManager has been discovered in OpenText™ iManager 3.2.4.0000.

  • CVE-2021-38116HigNov 22, 2024
    risk 0.57cvss 8.8epss 0.01

    Possible Elevation of Privilege Vulnerability in iManager has been discovered in OpenText™ iManager. This impacts all versions before 3.2.5

  • CVE-2021-38135HigNov 22, 2024
    risk 0.56cvss 8.6epss 0.00

    Possible External Service Interaction attack in iManager has been discovered in OpenText™ iManager 3.2.6.0000.

  • CVE-2024-3969HigMay 28, 2024
    risk 0.51cvss 7.8epss 0.01

    XML External Entity injection vulnerability found in OpenText™ iManager 3.2.6.0200. This could lead to remote code execution by parsing untrusted XML payload

  • CVE-2024-3968HigMay 15, 2024
    risk 0.51cvss 7.8epss 0.01

    Remote Code Execution has been discovered in OpenText™ iManager 3.2.6.0200. The vulnerability can trigger remote code execution using custom file upload task.

  • CVE-2024-3486HigMay 15, 2024
    risk 0.51cvss 7.8epss 0.00

    XML External Entity injection vulnerability found in OpenText™ iManager 3.2.6.0200. This could lead to information disclosure and remote code execution.

  • CVE-2024-3483HigMay 15, 2024
    risk 0.51cvss 7.8epss 0.01

    Remote Code Execution has been discovered in OpenText™ iManager 3.2.6.0200. The vulnerability can trigger command injection and insecure deserialization issues.

  • CVE-2023-24466HigNov 22, 2024
    risk 0.49cvss 7.5epss 0.01

    Possible XML External Entity Injection in iManager GET parameter has been discovered in OpenText™ iManager 3.2.6.0200.

  • CVE-2022-26324HigNov 22, 2024
    risk 0.49cvss 7.6epss 0.00

    Possible XSS in iManager URL for access Component has been discovered in OpenText™ iManager 3.2.6.0000.

  • CVE-2020-11859HigNov 6, 2024
    risk 0.49cvss 7.6epss 0.00

    Improper Input Validation vulnerability in OpenText iManager allows Cross-Site Scripting (XSS). This issue affects iManager before 3.2.3

  • CVE-2024-3967HigMay 15, 2024
    risk 0.49cvss 7.6epss 0.01

    Remote Code Execution has been discovered in OpenText™ iManager 3.2.6.0200. The vulnerability can trigger remote code execution unisng unsafe java object deserialization.

  • CVE-2021-38134MedNov 22, 2024
    risk 0.40cvss 6.1epss 0.00

    Possible XSS in iManager URL for access Component has been discovered in OpenText™ iManager 3.2.5.0000.

  • CVE-2021-38119MedNov 22, 2024
    risk 0.40cvss 6.1epss 0.00

    Possible Reflected Cross-Site Scripting (XSS) Vulnerability in iManager has been discovered in OpenText™ iManager 3.2.4.0000.

  • CVE-2024-3484MedMay 15, 2024
    risk 0.37cvss 5.7epss 0.01

    Path Traversal found in OpenText™ iManager 3.2.6.0200. This can lead to privilege escalation or file disclosure.

  • CVE-2021-38118MedNov 22, 2024
    risk 0.36cvss 5.5epss 0.00

    Possible improper input validation Vulnerability in iManager has been discovered in OpenText™ iManager 3.2.4.0000.

  • CVE-2024-3488MedMay 15, 2024
    risk 0.36cvss 5.6epss 0.00

    File Upload vulnerability in unauthenticated session found in OpenText™ iManager 3.2.6.0200. The vulnerability could allow ant attacker to upload a file without authentication.

  • CVE-2024-4429MedMay 28, 2024
    risk 0.35cvss 5.4epss 0.00

    Cross-Site Request Forgery vulnerability has been discovered in OpenText™ iManager 3.2.6.0200. This could lead to sensitive information disclosure.

  • CVE-2024-3970MedMay 15, 2024
    risk 0.34cvss 5.3epss 0.01

    Server Side Request Forgery vulnerability has been discovered in OpenText™ iManager 3.2.6.0200. This could lead to senstive information disclosure by directory traversal.

  • CVE-2024-3485MedMay 15, 2024
    risk 0.34cvss 5.3epss 0.00

    Server Side Request Forgery vulnerability has been discovered in OpenText™ iManager 3.2.6.0200. This could lead to senstive information disclosure.

Page 1 of 2