Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Allaire Subscribe
Filtered by product Spectra
Total 5 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2000-0120 1 Allaire 1 Spectra 2018-05-02 7.5 HIGH N/A
The Remote Access Service invoke.cfm template in Allaire Spectra 1.0 allows users to bypass authentication via the bAuthenticated parameter.
CVE-2000-0862 1 Allaire 1 Spectra 2017-10-09 6.4 MEDIUM N/A
Vulnerability in an administrative interface utility for Allaire Spectra 1.0.1 allows remote attackers to read and modify sensitive configuration information.
CVE-2000-0334 1 Allaire 1 Spectra 2008-09-10 2.1 LOW N/A
The Allaire Spectra container editor preview tool does not properly enforce object security, which allows an attacker to conduct unauthorized activities via an object-method that is added to the container object with a publishing rule.
CVE-2000-0050 1 Allaire 1 Spectra 2008-09-10 4.6 MEDIUM N/A
The Allaire Spectra Webtop allows authenticated users to access other Webtop sections by specifying explicit URLs.
CVE-2000-0051 1 Allaire 1 Spectra 2008-09-10 5.0 MEDIUM N/A
The Allaire Spectra Configuration Wizard allows remote attackers to cause a denial of service by repeatedly resubmitting data collections for indexing via a URL.