webseries_payment_application

Source -

NVD

CNA CVEs -

ADP CVEs -

CISA CVEs -

NVD CVEs -

3Vulnerabilities found

CVE-2005-0285

Assigner-MITRE Corporation

View Details

Assigner-MITRE Corporation

CVSS Score-4.6||MEDIUM

EPSS-0.52% / 65.79%

7 Day CHG~0.00%

Published-10 Feb, 2005 | 05:00

Updated-03 Apr, 2025 | 01:03

Webseries Payment Application does not properly restrict privileged operations, which allows remote authenticated users to gain privileges by directly accessing certain URLs.

Vendor-bottomline n/a

Product-webseries_payment_application n/a

CVE-2005-0287

Assigner-MITRE Corporation

View Details

Assigner-MITRE Corporation

CVSS Score-5||MEDIUM

EPSS-0.50% / 64.74%

7 Day CHG~0.00%

Published-10 Feb, 2005 | 05:00

Updated-03 Apr, 2025 | 01:03

Bottomline Webseries Payment Application allows remote attackers to read arbitrary files on the network via a report template with modified ReportPath or ReportName values.

Vendor-bottomline n/a

Product-webseries_payment_application n/a

CVE-2005-0288

Assigner-MITRE Corporation

View Details

Assigner-MITRE Corporation

CVSS Score-3.6||LOW

EPSS-0.32% / 54.25%

7 Day CHG~0.00%

Published-10 Feb, 2005 | 05:00

Updated-03 Apr, 2025 | 01:03

The change password functionality in Bottomline Webseries Payment Application does not require the old password when users enter a new password, which could allow remote authenticated users to change other users' passwords.

Vendor-bottomline n/a

Product-webseries_payment_application n/a