Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm filenet p8 application engine 3.5.1 vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2010-3470
Multiple cross-site scripting (XSS) vulnerabilities in the Workplace (aka WP) component in IBM FileNet P8 Application Engine (P8AE) 3.5.1 prior to 3.5.1-021 and 4.0.2.x prior to 4.0.2.7-P8AE-FP007 allow remote malicious users to inject arbitrary web script or HTML via unspecified...
Ibm Filenet P8 Application Engine 3.5.1
Ibm Filenet P8 Application Engine 4.0.2
2.6
CVSSv2
CVE-2009-4998
The Workplace (aka WP) component in IBM FileNet P8 Application Engine (P8AE) 3.5.1 prior to 3.5.1-019 and 4.0.2.x prior to 4.0.2.7-P8AE-FP007, in certain FileTracker configurations, does not apply a security policy to the first document added during a session, which might allow r...
Ibm Filenet P8 Application Engine 3.5.1
Ibm Filenet P8 Application Engine 4.0.2
4.3
CVSSv2
CVE-2010-3472
Multiple cross-site scripting (XSS) vulnerabilities in the Workplace (aka WP) component in IBM FileNet P8 Application Engine (P8AE) 3.5.1 prior to 3.5.1-021 allow remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Ibm Filenet P8 Application Engine 3.5.1
2.1
CVSSv2
CVE-2008-7261
The Workplace (aka WP) component in IBM FileNet P8 Application Engine (P8AE) 3.5.1 prior to 3.5.1-010 records DEBUG messages containing user credentials in the log4j.xml file, which might allow local users to obtain sensitive information by reading this file.
Ibm Filenet P8 Application Engine 3.5.1
5.8
CVSSv2
CVE-2010-3473
Open redirect vulnerability in the Workplace (aka WP) component in IBM FileNet P8 Application Engine (P8AE) 3.5.1 prior to 3.5.1-021 allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.
Ibm Filenet P8 Application Engine 3.5.1
4.3
CVSSv2
CVE-2009-4999
Cross-site scripting (XSS) vulnerability in the Workplace (aka WP) component in IBM FileNet P8 Application Engine (P8AE) 3.5.1 prior to 3.5.1-016 allows remote malicious users to inject arbitrary web script or HTML via the Name field.
Ibm Filenet P8 Application Engine 3.5.1
4
CVSSv2
CVE-2006-7241
The Image Viewer component in IBM FileNet P8 Application Engine (P8AE) 3.5.1 prior to 3.5.1-002 removes a user from an ACL when the user is denied all permissions for an annotation, which might allow remote authenticated users to bypass intended access restrictions in opportunist...
Ibm Filenet P8 Application Engine 3.5.1
4
CVSSv2
CVE-2006-7242
The Workplace (aka WP) component in IBM FileNet P8 Application Engine (P8AE) 3.5.1 prior to 3.5.1-001 does not ensure that the AE Administrator role is present for Site Preferences modifications, which allows remote authenticated users to bypass intended access restrictions via u...
Ibm Filenet P8 Application Engine 3.5.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3581
reflected XSS
CVE-2024-26925
CVE-2024-27956
LFI
CVE-2024-3607
CVE-2024-3107
CVE-2024-3295
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
Vulmon