RSS   Vulnerabilities for 'Work flow engine'   RSS

2004-10-25
 
CVE-2004-1631

 

 
Open WorkFlow Engine (OpenWFE) 1.4.x allows remote attackers to conduct port scans of remote hosts by specifying the target in an rmi:// Worklist URL, then using the response times to infer the results.

 
 
CVE-2004-1630

 

 
Cross-site scripting (XSS) vulnerability in the login form in Open WorkFlow Engine (OpenWFE) 1.4.x allows remote attackers to execute arbitrary web script or HTML via the url parameter.

 


Copyright 2024, cxsecurity.com

 

Back to Top