Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
hp application lifecycle management - vulnerabilities and exploits
(subscribe to this query)
3.3
CVSSv3
CVE-2020-2218
Jenkins HP ALM Quality Center Plugin 1.6 and previous versions stores a password unencrypted in its global configuration file on the Jenkins master where it can be viewed by users with access to the master file system.
Hp Application Lifecycle Management Quality Center Project Hp Application Lifecycle Management Quality Center
6.1
CVSSv3
CVE-2020-11022
In jQuery versions greater than or equal to 1.2 and prior to 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuer...
Jquery Jquery
Drupal Drupal
Debian Debian Linux 9.0
Fedoraproject Fedora 31
Fedoraproject Fedora 32
Fedoraproject Fedora 33
Oracle Weblogic Server 12.1.3.0.0
Oracle Jdeveloper 11.1.1.9.0
Oracle Retail Back Office 14.1
Oracle Retail Back Office 14.0
Oracle Peoplesoft Enterprise Peopletools 8.56
Oracle Weblogic Server 10.3.6.0.0
Oracle Communications Webrtc Session Controller 7.2
Oracle Weblogic Server 12.2.1.3.0
Oracle Agile Product Lifecycle Management For Process 6.2.0.0
Oracle Peoplesoft Enterprise Peopletools 8.57
Oracle Application Testing Suite 13.3.0.1
Oracle Retail Returns Management 14.0
Oracle Retail Returns Management 14.1
Oracle Jdeveloper 12.2.1.3.0
Oracle Policy Automation Connector For Siebel 10.4.6
Oracle Financial Services Market Risk Measurement And Management 8.0.6
13 Github repositories
NA
CVE-2014-2631
Unspecified vulnerability in HP Application Lifecycle Management (aka Quality Center) 11.5x and 12.0x allows local users to gain privileges via unknown vectors, aka ZDI-CAN-2138.
Hp Application Lifecycle Management 11.50
Hp Application Lifecycle Management 12.00
NA
CVE-2013-4834
Unspecified vulnerability in the client component in HP Application LifeCycle Management (ALM) prior to 11 p11 allows remote malicious users to execute arbitrary code via unknown vectors, aka ZDI-CAN-1327.
Hp Application Lifecycle Management
NA
CVE-2013-4836
Unspecified vulnerability in the GossipService SOAP Request implementation in the Synchronizer component prior to 1.4.2 in HP Application LifeCycle Management (ALM) allows remote malicious users to execute arbitrary code via unknown vectors, aka ZDI-CAN-1759.
Hp Alm Synchronizer
Hp Alm Synchronizer 1.30
Hp Alm Synchronizer 1.20
Hp Alm Synchronizer 1.10
Hp Alm Synchronizer 1.40
NA
CVE-2013-4810
HP ProCurve Manager (PCM) 3.20 and 4.0, PCM+ 3.20 and 4.0, Identity Driven Manager (IDM) 4.0, and Application Lifecycle Management allow remote malicious users to execute arbitrary code via a marshalled object to (1) EJBInvokerServlet or (2) JMXInvokerServlet, aka ZDI-CAN-1760. N...
Hp Application Lifecycle Management -
Hp Procurve Manager 4.0
Hp Identity Driven Manager 4.0
Hp Procurve Manager 3.20
1 EDB exploit
NA
CVE-2013-4802
Cross-site scripting (XSS) vulnerability in HP Application Lifecycle Management (ALM) Quality Center prior to 11.51 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors, aka ZDI-CAN-1565.
Hp Application Lifecycle Management
Hp Application Lifecycle Management 11.00
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started