Vignette has several vulnerabilities that allow attacker to obtain sensitive information, execute malicious code and/or denial of service attacks. When using vignette, it installs styles and login templetes. This can be found in vgn folder. The attacker can get access to the software. Unspecified vulnerability in Vignette Content Management allows “low privileged” users to gain administrator privileges via unknown attack vectors.
The impact include:-
This vulnerability can be fixed by:-