EMC Documentum WebTop 6.7 Service Pack 1
Approved changes feed: RSS · Atom
cpe:2.3:a:emc:documentum_webtop:6.7:sp1:*:*:*:*:*:*
part: a version: 6.7 update: sp1
| Vendor | Emc (f882007a-26e9-5b42-9f2e-94a4747c4377) |
|---|---|
| Product | Documentum Webtop (89c6f514-1254-5d59-b8c0-62e895e07392) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2015-4524 |
vulnerable | 2026-06-03 14:34:52.126698 |
Details available
Unrestricted file upload vulnerability in EMC Documentum WebTop 6.7SP1 before P31, 6.7SP2 before P23, and 6.8 before P01; Documentum Administrator 6.7SP1 before P31, 6.7SP2 before P23, 7.0 before P18, 7.1 before P15, and 7.2 before P01; Documentum Digital Assets Manager 6.5SP6 before P25; Documentum Web Publishers 6.5 SP7 before P25; and Documentum Task Space 6.7SP1 before P31 and 6.7SP2 before P23 allows remote authenticated users to execute arbitrary code by uploading a file to the backend Content Server.
Published: 2015-07-04T14:00:00.000Z
Updated: 2024-08-06T06:18:11.790Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2015-0551 |
vulnerable | 2026-06-03 14:34:35.700319 |
Details available
Multiple cross-site scripting (XSS) vulnerabilities in EMC Documentum WebTop 6.7SP1 before P31, 6.7SP2 before P23, and 6.8 before P01; Documentum Administrator 6.7SP1 before P31, 6.7SP2 before P23, 7.0 before P18, 7.1 before P15, and 7.2 before P01; Documentum Digital Assets Manager 6.5SP6 before P25; Documentum Web Publishers 6.5 SP7 before P25; and Documentum Task Space 6.7SP1 before P31 and 6.7SP2 before P23 allow remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
Published: 2015-07-04T14:00:00.000Z
Updated: 2024-08-06T04:10:10.974Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2014-2518 |
vulnerable | 2026-06-03 14:33:51.079571 |
Details available
Multiple cross-site request forgery (CSRF) vulnerabilities in EMC Documentum WDK before 6.7SP1 P28 and 6.7SP2 before P15 allow remote attackers to hijack the authentication of arbitrary users.
Published: 2014-08-20T10:00:00.000Z
Updated: 2024-08-06T10:14:26.572Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2014-2511 |
vulnerable | 2026-06-03 14:33:51.061636 |
Details available
Multiple cross-site scripting (XSS) vulnerabilities in EMC Documentum WebTop before 6.7 SP1 P28 and 6.7 SP2 before P14 allow remote attackers to inject arbitrary web script or HTML via the (1) startat or (2) entryId parameter.
Published: 2014-08-20T10:00:00.000Z
Updated: 2024-08-06T10:14:26.830Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2013-3281 |
vulnerable | 2026-06-03 14:33:06.517023 |
Details available
Cross-site scripting (XSS) vulnerability in EMC Documentum Webtop before 6.7 SP2 P07, Documentum WDK before 6.7 SP2 P07, Documentum Taskspace before 6.7 SP2 P07, Documentum Records Manager before 6.7 SP2 P07, Documentum Web Publisher before 6.5 SP7, Documentum Digital Asset Manager before 6.5 SP6, Documentum Administrator before 6.7 SP2 P07, and Documentum Capital Projects before 1.8 P01 allows remote attackers to inject arbitrary web script or HTML via a crafted parameter in a URL.
Published: 2013-11-06T11:00:00.000Z
Updated: 2024-08-06T16:07:37.418Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2013-0939 |
vulnerable | 2026-06-03 14:32:46.781208 |
Details available
EMC Documentum Webtop before 6.7 SP2, Documentum WDK before 6.7 SP2, Documentum Taskspace before 6.7 SP2, and Documentum Records Manager before 6.7 SP2 allow remote attackers to obtain sensitive information via vectors involving cross-origin frame navigation, related to a "Cross Frame Scripting" issue.
Published: 2013-05-10T10:00:00.000Z
Updated: 2024-09-17T02:27:10.388Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2013-0938 |
vulnerable | 2026-06-03 14:32:46.780759 |
Details available
Cross-site scripting (XSS) vulnerability in EMC Documentum Webtop before 6.7 SP2, Documentum WDK before 6.7 SP2, Documentum Taskspace before 6.7 SP2, and Documentum Records Manager before 6.7 SP2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Published: 2013-05-10T10:00:00.000Z
Updated: 2024-09-16T21:57:44.246Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2013-0937 |
vulnerable | 2026-06-03 14:32:46.780221 |
Details available
Session fixation vulnerability in EMC Documentum Webtop before 6.7 SP2, Documentum WDK before 6.7 SP2, Documentum Taskspace before 6.7 SP2, and Documentum Records Manager before 6.7 SP2 allows remote attackers to hijack web sessions via unspecified vectors.
Published: 2013-05-10T10:00:00.000Z
Updated: 2024-09-16T20:31:22.784Z Reference links |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.