cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2011-0552,https://securityvulnerability.io/vulnerability/CVE-2011-0552,,"Multiple cross-site scripting (XSS) vulnerabilities in the management console in Symantec IM Manager before 8.4.18 allow remote attackers to inject arbitrary web script or HTML via the (1) refreshRateSetting parameter to IMManager/Admin/IMAdminSystemDashboard.asp, the (2) nav or (3) menuitem parameter to IMManager/Admin/IMAdminTOC_simple.asp, or the (4) action parameter to IMManager/Admin/IMAdminEdituser.asp.",Symantec,Im Manager,,,0.11535999923944473,false,,false,false,false,,,false,false,,2011-10-02T01:00:00.000Z,0
CVE-2011-0554,https://securityvulnerability.io/vulnerability/CVE-2011-0554,,"The management console in Symantec IM Manager before 8.4.18 allows remote attackers to execute arbitrary code via unspecified vectors, related to a ""code injection issue.""",Symantec,Im Manager,,,0.7387599945068359,false,,false,false,false,,,false,false,,2011-10-02T01:00:00.000Z,0
CVE-2011-0553,https://securityvulnerability.io/vulnerability/CVE-2011-0553,,SQL injection vulnerability in the management console in Symantec IM Manager before 8.4.18 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.,Symantec,Im Manager,,,0.02873999997973442,false,,false,false,false,,,false,false,,2011-10-02T01:00:00.000Z,0
CVE-2010-3719,https://securityvulnerability.io/vulnerability/CVE-2010-3719,,Eval injection vulnerability in IMAdminSchedTask.asp in the administrative interface for Symantec IM Manager 8.4.16 and earlier allows remote attackers to execute arbitrary code via unspecified parameters to the ScheduleTask method.,Symantec,Im Manager,,,0.07353000342845917,false,,false,false,false,,,false,false,,2011-02-02T00:00:00.000Z,0
CVE-2010-0112,https://securityvulnerability.io/vulnerability/CVE-2010-0112,,"Multiple SQL injection vulnerabilities in the Administrative Interface in the IIS extension in Symantec IM Manager before 8.4.16 allow remote attackers to execute arbitrary SQL commands via (1) the rdReport parameter to rdpageimlogic.aspx, related to the sGetDefinition function in rdServer.dll, and SQL statements contained within a certain report file; (2) unspecified parameters in a DetailReportGroup (aka DetailReportGroup.lgx) action to rdpageimlogic.aspx; the (3) selclause, (4) whereTrendTimeClause, (5) TrendTypeForReport, (6) whereProtocolClause, or (7) groupClause parameter in a SummaryReportGroup (aka SummaryReportGroup.lgx) action to rdpageimlogic.aspx; the (8) loginTimeStamp, (9) dbo, (10) dateDiffParam, or (11) whereClause parameter in a LoggedInUsers (aka LoggedInUSers.lgx) action to (a) rdpageimlogic.aspx or (b) rdPage.aspx; the (12) selclause, (13) whereTrendTimeClause, (14) TrendTypeForReport, (15) whereProtocolClause, or (16) groupClause parameter to rdpageimlogic.aspx; (17) the groupList parameter to IMAdminReportTrendFormRun.asp; or (18) the email parameter to IMAdminScheduleReport.asp.",Symantec,Im Manager,,,0.9214800000190735,false,,false,false,false,,,false,false,,2010-10-28T19:00:00.000Z,0
CVE-2009-3032,https://securityvulnerability.io/vulnerability/CVE-2009-3032,,"Integer overflow in kvolefio.dll 8.5.0.8339 and 10.5.0.0 in the Autonomy KeyView Filter SDK, as used in IBM Lotus Notes 8.5, Symantec Mail Security for Microsoft Exchange 5.0.10 through 5.0.13, and other products, allows context-dependent attackers to execute arbitrary code via a crafted OLE document that triggers a heap-based buffer overflow.",Symantec,"Data Loss Prevention Detection Servers,Mail Security,Im Manager 2007,Lotus Notes,Data Loss Prevention Endpoint Agents,Brightmail Gateway",,,0.003160000080242753,false,,false,false,false,,,false,false,,2010-03-05T19:00:00.000Z,0
CVE-2009-3036,https://securityvulnerability.io/vulnerability/CVE-2009-3036,,Cross-site scripting (XSS) vulnerability in the console in Symantec IM Manager 8.3 and 8.4 before 8.4.13 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.,Symantec,Im Manager,,,0.012620000168681145,false,,false,false,false,,,false,false,,2010-02-23T20:00:00.000Z,0