Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
enterprise developer vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2018-12469
Incorrect handling of an invalid value for an HTTP request parameter by Directory Server (aka Enterprise Server Administration web UI) in Micro Focus Enterprise Developer and Enterprise Server 2.3 Update 2 and previous versions, 3.0 before Patch Update 12, and 4.0 before Patch Up...
Microfocus Enterprise Developer 2.3
Microfocus Enterprise Server 2.3
Microfocus Enterprise Server
Microfocus Enterprise Developer 4.0
Microfocus Enterprise Server 4.0
Microfocus Enterprise Developer 3.0
Microfocus Enterprise Server 3.0
Microfocus Enterprise Developer
6.5
CVSSv2
CVE-2020-9523
Insufficiently protected credentials vulnerability on Micro Focus enterprise developer and enterprise server, affecting all version before 4.0 Patch Update 16, and version 5.0 Patch Update 6. The vulnerability could allow an malicious user to transmit hashed credentials for the u...
Microfocus Enterprise Developer 4.0
Microfocus Enterprise Developer 5.0
Microfocus Enterprise Developer
Microfocus Enterprise Server 4.0
Microfocus Enterprise Server 5.0
Microfocus Enterprise Server
4.3
CVSSv2
CVE-2019-11651
Reflected XSS on Micro Focus Enterprise Developer and Enterprise Server, all versions prior to version 3.0 Patch Update 20, version 4.0 Patch Update 12, and version 5.0 Patch Update 2. The vulnerability could be exploited to redirect a user to a malicious page or forge certain ty...
Microfocus Enterprise Developer 3.0
Microfocus Enterprise Server 3.0
Microfocus Enterprise Developer 4.0
Microfocus Enterprise Server 4.0
Microfocus Enterprise Developer 5.0
Microfocus Enterprise Server 5.0
3.5
CVSSv2
CVE-2017-7422
Reflected and stored Cross-Site Scripting (XSS, CWE-79) vulnerabilities in esfadmingui in Micro Focus Enterprise Developer and Enterprise Server 2.3, 2.3 Update 1 before Hotfix 8, and 2.3 Update 2 before Hotfix 9 allow remote authenticated malicious users to bypass protection mec...
Microfocus Enterprise Server 2.3
Microfocus Enterprise Developer 2.3
6.8
CVSSv2
CVE-2017-7423
A Cross-Site Request Forgery (CWE-352) vulnerability in esfadmingui in Micro Focus Enterprise Developer and Enterprise Server 2.3, 2.3 Update 1 before Hotfix 8, and 2.3 Update 2 before Hotfix 9 allows remote unauthenticated malicious users to forge requests, if this component is ...
Microfocus Enterprise Server 2.3
Microfocus Enterprise Developer 2.3
4
CVSSv2
CVE-2017-7424
A Path Traversal (CWE-22) vulnerability in esfadmingui in Micro Focus Enterprise Developer and Enterprise Server 2.3, 2.3 Update 1 before Hotfix 8, and 2.3 Update 2 before Hotfix 9 allows remote authenticated users to download arbitrary files from a system running the product, if...
Microfocus Enterprise Server 2.3
Microfocus Enterprise Developer 2.3
3.5
CVSSv2
CVE-2020-9524
Cross Site scripting vulnerability on Micro Focus Enterprise Server and Enterprise developer, affecting all versions prior to version 5.0 Patch Update 8. The vulnerability could allow an malicious user to trigger administrative actions when an administrator viewed malicious data ...
Microfocus Enterprise Developer 5.0
Microfocus Enterprise Server 5.0
NA
CVE-2023-32265
A potential security vulnerability has been identified in the Enterprise Server Common Web Administration (ESCWA) component used in Enterprise Server, Enterprise Test Server, Enterprise Developer, Visual COBOL, and COBOL Server. An attacker would need to be authenticated into ES...
Microfocus Cobol Server 7.0
Microfocus Cobol Server 8.0
Microfocus Cobol Server 6.0
Microfocus Visual Cobol 7.0
Microfocus Visual Cobol 8.0
Microfocus Visual Cobol 6.0
Microfocus Enterprise Developer 7.0
Microfocus Enterprise Developer 8.0
Microfocus Enterprise Developer 6.0
Microfocus Enterprise Test Server 7.0
Microfocus Enterprise Test Server 8.0
Microfocus Enterprise Test Server 6.0
Microfocus Enterprise Server 7.0
Microfocus Enterprise Server 8.0
Microfocus Enterprise Server 6.0
NA
CVE-2023-4501
User authentication with username and password credentials is ineffective in OpenText (Micro Focus) Visual COBOL, COBOL Server, Enterprise Developer, and Enterprise Server (including product variants such as Enterprise Test Server), versions 7.0 patch updates 19 and 20, 8.0 patch...
Microfocus Cobol Server 9.0
Microfocus Cobol Server 8.0
Microfocus Cobol Server 7.0
Microfocus Visual Cobol 9.0
Microfocus Visual Cobol 8.0
Microfocus Visual Cobol 7.0
Microfocus Enterprise Developer 9.0
Microfocus Enterprise Developer 8.0
Microfocus Enterprise Developer 7.0
Microfocus Enterprise Test Server 9.0
Microfocus Enterprise Test Server 8.0
Microfocus Enterprise Test Server 7.0
Microfocus Enterprise Server 9.0
Microfocus Enterprise Server 8.0
Microfocus Enterprise Server 7.0
7.5
CVSSv2
CVE-2017-7420
An Authentication Bypass (CWE-287) vulnerability in ESMAC (aka Enterprise Server Monitor and Control) in Micro Focus Enterprise Developer and Enterprise Server 2.3 and previous versions, 2.3 Update 1 before Hotfix 8, and 2.3 Update 2 before Hotfix 9 allows remote unauthenticated ...
Microfocus Enterprise Server Monitor And Control -
Microfocus Enterprise Developer 2.3
Microfocus Enterprise Server 2.3
Microfocus Enterprise Server
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
deserialization
CVE-2024-4040
cross-site scripting
CVE-2023-25790
CVE-2024-2961
XML external entity
CVE-2024-26926
CVE-2024-32806
CVE-2024-32711
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »