02 Oct 2017
CVE-2017-14757 - CVE Vulnerability
OpenText Document Sciences xPression (formerly EMC Document Sciences xPression) v4.5SP1 Patch 13 (older versions might be affected as well) is prone to SQL Injection: /xDashboard/html/jobhistory/downloadSupportFile.action, parameter: jobRunId. In order for this vulnerability to be exploited, an attacker must authenticate to the application first. (CVSS:0.0) (Last Update:2017-10-02)
Vulnerability Details : OpenText Document Sciences xPression (formerly EMC Document Sciences xPression) v4.5SP1 Patch 13 (older versions might be affected as well) is prone to SQL Injection: /xDashboard/html/jobhistory/downloadSupportFile.action, parameter: jobRunId. In order for this vulnerability to be exploited, an attacker must authenticate to the application first. Publish Date : 2017-10-02 Last Update Date : 2017-10-02 - CVSS Scores & Vulnerability Types
- Products Affected By CVE-2017-14757
- References For CVE-2017-14757
| |||||||||||||||||||||||||||||||||||||||||||||||
- Metasploit Modules Related To CVE-2017-14757There are not any metasploit modules related to this CVE entry (Please visit www.metasploit.com for more information) |