Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibi webfocus business intelligence 8.0 vulnerabilities and exploits
(subscribe to this query)
5.8
CVSSv2
CVE-2020-14204
In WebFOCUS Business Intelligence 8.0 (SP6), the administration portal allows remote malicious users to read arbitrary local files or forge server-side HTTP requests via a crafted HTTP request to /ibi_apps/WFServlet.cfg because XML external entity injection is possible. This is r...
Ibi Webfocus Business Intelligence 8.0
4.3
CVSSv2
CVE-2020-14202
WebFOCUS Business Intelligence 8.0 (SP6) was prone to XSS via arbitrary URL parameters.
Ibi Webfocus Business Intelligence 8.0
6.8
CVSSv2
CVE-2020-14203
WebFOCUS Business Intelligence 8.0 (SP6) allows a Cross-Site Request Forgery (CSRF) attack against administrative users within the /ibi_apps/WFServlet(.ibfs) endpoint. The impact may be creation of an administrative user. It can also be exploited in conjunction with CVE-2016-9044...
Ibi Webfocus Business Intelligence 8.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-3400
deserialization
CVE-2024-21788
CVE-2023-42433
CVE-2024-21841
CVE-2024-22095
local file inclusion
memory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started