Search Results (Refine Search)

Search Parameters:
  • Results Type: Overview
  • Keyword (text search): cpe:2.3:a:microsoft:.net_framework:-:*:*:*:*:*:*:*
  • CPE Name Search: true
There are 2 matching records.
Displaying matches 1 through 2.
Vuln ID Summary CVSS Severity

IBM IMS Enterprise Suite Data Provider before for Microsoft .NET allows remote authenticated users to obtain sensitive information or modify data via unspecified vectors.

Published: November 30, 2016; 3:59:02 PM -0500
V3.0: 8.1 HIGH
V2.0: 5.5 MEDIUM

The default configuration of ASP.NET in Microsoft .NET before 1.1 has a value of FALSE for the EnableViewStateMac property, which allows remote attackers to conduct cross-site scripting (XSS) attacks via the __VIEWSTATE parameter.

Published: May 27, 2010; 3:00:01 PM -0400
V3.x:(not available)
V2.0: 4.3 MEDIUM