Known Vulnerabilities for products from Vignette
Listed below are 12 of the newest known vulnerabilities associated with the vendor "Vignette".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2025-25071 json | Not Provided | 2025-02-07 | 2026-04-23 | |
| CVE-2018-18941 json | In Vignette Content Management version 6, it is possible to gain remote access to administrator privileges by discovering the... | 9.8 - CRITICAL | 2019-01-31 | 2020-08-24 |
| CVE-2008-6412 json | Unspecified vulnerability in Vignette Content Management 7.3.0.5, 7.3.1, 7.3.1.1, 7.4, and 7.5 allows "low privileged" users ... | Not Provided | 2009-03-06 | 2026-04-23 |
| CVE-2004-0917 json | The default installation of Vignette Application Portal installs the diagnostic utility without authentication requirements, ... | Not Provided | 2005-01-27 | 2025-04-03 |
| CVE-2003-0405 json | Vignette StoryServer 5 and Vignette V/6 allows remote attackers to execute arbitrary TCL code via (1) an HTTP query or cookie... | Not Provided | 2003-06-30 | 2025-04-03 |
| CVE-2003-0404 json | Multiple Cross Site Scripting (XSS) vulnerabilities in Vignette StoryServer 4 and 5, and Vignette V/5 and V/6, allow remote a... | Not Provided | 2003-06-30 | 2025-04-03 |
| CVE-2003-0403 json | Vignette StoryServer 5 and Vignette V/5 allows remote attackers to read and modify license information, and cause a denial of... | Not Provided | 2003-06-30 | 2025-04-03 |
| CVE-2003-0402 json | The default login template (/vgn/login) in Vignette StoryServer 5 and Vignette V/5 generates different responses whether a us... | Not Provided | 2003-06-30 | 2025-04-03 |
| CVE-2003-0401 json | Vignette StoryServer and Vignette V/5 allows remote attackers to obtain sensitive information via a request for the /vgn/styl... | Not Provided | 2003-06-30 | 2025-04-03 |
| CVE-2003-0400 json | Vignette StoryServer and Vignette V/5 does not properly calculate the size of text variables, which causes Vignette to return... | Not Provided | 2003-06-30 | 2025-04-03 |
| CVE-2003-0399 json | Vignette StoryServer 4 and 5, Vignette V/5, and possibly other versions allows remote attackers to perform unauthorized SELEC... | Not Provided | 2003-07-02 | 2025-04-03 |
| CVE-2003-0398 json | Vignette StoryServer 4 and 5, and Vignette V/5 and V/6, with the SSI EXEC feature enabled, allows remote attackers to execute... | Not Provided | 2003-07-02 | 2025-04-03 |
| CVE-2002-0385 json | Vignette Story Server 4.1 and 6.0 allows remote attackers to obtain sensitive information via a request that contains a large... | Not Provided | 2004-06-01 | 2025-04-03 |
Known software with vulnerabilities from Vignette
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Vignette | Content Management | 6 |