Total
3 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2003-0801 | 1 Nokia | 1 Electronic Documentation | 2008-09-10 | 4.3 MEDIUM | N/A |
Cross-site scripting (XSS) vulnerability in Nokia Electronic Documentation (NED) 5.0 allows remote attackers to execute arbitrary web script and steal cookies via a URL to the docs/ directory that contains the script. | |||||
CVE-2003-0802 | 1 Nokia | 1 Electronic Documentation | 2008-09-10 | 5.0 MEDIUM | N/A |
Nokia Electronic Documentation (NED) 5.0 allows remote attackers to obtain a directory listing of the WebLogic web root, and the physical path of the NED server, via a "retrieve" action with a location parameter of . (dot). | |||||
CVE-2003-0803 | 1 Nokia | 1 Electronic Documentation | 2008-09-10 | 7.5 HIGH | N/A |
Nokia Electronic Documentation (NED) 5.0 allows remote attackers to use NED as an open HTTP proxy via a URL in the location parameter, which NED accesses and returns to the user. |