Search Results (Refine Search)

Search Parameters:
  • CPE Product Version: cpe:/a:microsoft:.net_framework:-
There are 2 matching records.
Displaying matches 1 through 2.
Vuln ID Summary CVSS Severity

IBM IMS Enterprise Suite Data Provider before for Microsoft .NET allows remote authenticated users to obtain sensitive information or modify data via unspecified vectors.

Published: November 30, 2016; 3:59:02 PM -0500
V3.0: 8.1 HIGH
V2.0: 5.5 MEDIUM

The default configuration of ASP.NET in Microsoft .NET before 1.1 has a value of FALSE for the EnableViewStateMac property, which allows remote attackers to conduct cross-site scripting (XSS) attacks via the __VIEWSTATE parameter.

Published: May 27, 2010; 3:00:01 PM -0400
V3.x:(not available)
V2.0: 4.3 MEDIUM