cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2014-3138,https://securityvulnerability.io/vulnerability/CVE-2014-3138,,"SQL injection vulnerability in Xerox DocuShare before 6.53 Patch 6 Hotfix 2, 6.6.1 Update 1 before Hotfix 24, and 6.6.1 Update 2 before Hotfix 3 allows remote authenticated users to execute arbitrary SQL commands via the PATH_INFO to /docushare/dsweb/ResultBackgroundJobMultiple/.  NOTE: some of these details are obtained from third party information.",Xerox,Docushare,,,0.001820000004954636,false,,false,false,false,,,false,false,,2014-05-02T00:00:00.000Z,0
CVE-2008-5225,https://securityvulnerability.io/vulnerability/CVE-2008-5225,,"Multiple cross-site scripting (XSS) vulnerabilities in Xerox DocuShare 6 and earlier allow remote attackers to inject arbitrary web script or HTML via the PATH_INFO to the default URI under (1) SearchResults/ and (2) Services/ in dsdn/dsweb/, and (3) the default URI under unspecified docushare/dsweb/ServicesLib/Group-#/ directories.",Xerox,Docushare,,,0.020250000059604645,false,,false,false,false,,,false,false,,2008-11-25T19:00:00.000Z,0