VYPR

Content Management CE

by Opentext

CVEs (4)

  • CVE-2024-12543MedApr 21, 2025
    risk 0.38cvss epss 0.00

    User Enumeration and Data Integrity in Barcode functionality in OpenText Content Management versions 24.3-25.1on Windows and Linux allows a malicous authenticated attacker to potentially alter barcode attributes.

  • CVE-2024-12863MedApr 21, 2025
    risk 0.36cvss epss 0.00

    Stored XSS in Discussions in OpenText Content Management CE 20.2 to 25.1 on Windows and Linux allows authenticated malicious users to inject code into the system.

  • CVE-2024-8125MedFeb 4, 2025
    risk 0.35cvss epss 0.00

    Improper Validation of Specified Type of Input vulnerability in OpenText™ Content Management (Extended ECM) allows Parameter Injection.  A bad actor with the required OpenText Content Management privileges (not root) could expose the vulnerability to carry out a remote code…

  • CVE-2023-34377Aug 5, 2023
    risk 0.00cvss epss 0.00

    Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Joseph C Dolson My Content Management plugin <= 1.7.6 versions.