EMC Document Sciences xPression 4.2 Enterprise Edition Compuset Engine

Submit a proposal Propose CVE/GCVE/GHSA reference

Approved changes feed: RSS · Atom

cpe:2.3:a:emc:document_sciences_xpression:4.2:-:-:*:enterprise:-:-:compuset_engine

part: a version: 4.2 update: -

VendorEmc (f882007a-26e9-5b42-9f2e-94a4747c4377)
ProductDocument Sciences Xpression (e4735e85-2cb5-566d-b363-dde11ced380a)
Edition-
Language*
Software editionenterprise
Target software-
Target hardware-
Othercompuset_engine
NotesImported from NVD CPE 2.0 feed

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2015-0540 vulnerable 2026-06-03 14:34:35.671862 Details available
SQL injection vulnerability in the xAdmin interface in EMC Document Sciences xPression 4.2 before P44 and 4.5 SP1 before P03 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.
Published: 2015-05-25T19:00:00.000Z
Updated: 2024-08-06T04:10:11.022Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2013-6177 vulnerable 2026-06-03 14:33:25.154546 Details available
Directory traversal vulnerability in EMC Document Sciences xPression 4.1 SP1 before Patch 47, 4.2 before Patch 26, and 4.5 before Patch 05, as used in Documentum Edition, Enterprise Edition Publish Engine, and Enterprise Edition Compuset Engine, allows remote authenticated users to read arbitrary files by leveraging xDashboard access.
Published: 2013-11-21T02:00:00.000Z
Updated: 2024-08-06T17:29:42.994Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2013-6176 vulnerable 2026-06-03 14:33:25.154180 Details available
Multiple SQL injection vulnerabilities in EMC Document Sciences xPression 4.1 SP1 before Patch 47, 4.2 before Patch 26, and 4.5 before Patch 05, as used in Documentum Edition, Enterprise Edition Publish Engine, and Enterprise Edition Compuset Engine, allow remote authenticated users to execute arbitrary SQL commands via unspecified input to a (1) xAdmin or (2) xDashboard form.
Published: 2013-11-21T02:00:00.000Z
Updated: 2024-08-06T17:29:43.051Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2013-6175 vulnerable 2026-06-03 14:33:25.153693 Details available
Multiple cross-site scripting (XSS) vulnerabilities in EMC Document Sciences xPression 4.1 SP1 before Patch 47, 4.2 before Patch 26, and 4.5 before Patch 05, as used in Documentum Edition, Enterprise Edition Publish Engine, and Enterprise Edition Compuset Engine, allow remote attackers to inject arbitrary web script or HTML via unspecified input to a (1) xAdmin or (2) xDashboard form.
Published: 2013-11-21T02:00:00.000Z
Updated: 2024-08-06T17:29:42.985Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2013-6174 vulnerable 2026-06-03 14:33:25.153133 Details available
Multiple open redirect vulnerabilities in xAdmin in EMC Document Sciences xPression 4.1 SP1 before Patch 47, 4.2 before Patch 26, and 4.5 before Patch 05, as used in Documentum Edition, Enterprise Edition Publish Engine, and Enterprise Edition Compuset Engine, allow remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified parameters.
Published: 2013-11-21T02:00:00.000Z
Updated: 2024-08-06T17:29:43.014Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2013-6173 vulnerable 2026-06-03 14:33:25.152082 Details available
Multiple cross-site request forgery (CSRF) vulnerabilities in EMC Document Sciences xPression 4.1 SP1 before Patch 47, 4.2 before Patch 26, and 4.5 before Patch 05, as used in Documentum Edition, Enterprise Edition Publish Engine, and Enterprise Edition Compuset Engine, allow remote attackers to hijack the authentication of administrators for requests that perform administrative actions in (1) xAdmin or (2) xDashboard.
Published: 2013-11-21T02:00:00.000Z
Updated: 2024-08-06T17:29:42.984Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.