Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm web content manager vulnerabilities and exploits
(subscribe to this query)
4
CVSSv2
CVE-2010-4806
The authoring tool in IBM Web Content Manager (WCM) 6.1.5, and 7.0.0.1 before CF003, allows remote authenticated users to bypass intended access restrictions on draft creation by leveraging certain resource editor privileges.
Ibm Web Content Manager 6.1.5
Ibm Web Content Manager 7.0.01
3.5
CVSSv2
CVE-2010-4807
Race condition in IBM Web Content Manager (WCM) 7.0.0.1 before CF003 allows remote authenticated users to cause a denial of service (infinite recursive query) via unspecified vectors, related to a StackOverflowError exception.
Ibm Web Content Manager 7.0.0.1
7.8
CVSSv2
CVE-2013-6329
IBM Global Security Kit (aka GSKit), as used in Content Manager OnDemand 8.5 and 9.0 and other products, allows remote malicious users to cause a denial of service via a crafted handshake during resumption of an SSLv2 session.
Ibm Security Access Manager For Web 6.1.1
Ibm Security Access Manager For Web 7.0
Ibm Content Manager Ondemand For Multiplatforms 9.0
Ibm Global Security Kit -
Ibm Content Manager Ondemand For Multiplatforms 8.5
Ibm Security Access Manager For Web 6.0
Ibm Security Access Manager For Web 6.1
6.8
CVSSv2
CVE-2016-2901
Cross-site request forgery (CSRF) vulnerability in the PA_Theme_Creator application in IBM WebSphere Portal 8.5 CF08 through CF10 and Web Content Manager allows remote malicious users to hijack the authentication of arbitrary users for requests that insert XSS sequences.
Ibm Websphere Portal 8.5.0.0
Ibm Web Content Manager
4.3
CVSSv2
CVE-2011-2754
Cross-site scripting (XSS) vulnerability in the PageBuilder2 (aka Page Builder) theme in IBM WebSphere Portal 7.x prior to 7.0.0.1 CF006, as used in IBM Web Content Manager (WCM) and other products, allows remote malicious users to inject arbitrary web script or HTML via unspecif...
Ibm Websphere Portal 7.0.0.1
Ibm Web Content Manager
Ibm Websphere Portal 7.0.0.0
4.3
CVSSv2
CVE-2013-5449
Cross-site scripting (XSS) vulnerability in workingSet.jsp in IBM Eclipse Help System (IEHS), as used in the installable InfoCenter component in IBM FileNet Content Manager 4.5.1, 5.0.0, 5.1.0, and 5.2.0, allows remote malicious users to inject arbitrary web script or HTML via un...
Ibm Filenet Content Manager 4.5.1
Ibm Filenet Content Manager 5.0.0
Ibm Filenet Content Manager 5.1.0
Ibm Filenet Content Manager 5.2.0
4.3
CVSSv2
CVE-2016-8922
Exphox WebRadar is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.
Ibm Web Content Manager Production Analytics 4.0
Ibm Websphere Portal 8.0
Ibm Websphere Portal 8.5
NA
CVE-2023-35905
IBM FileNet Content Manager 5.5.8, 5.5.10, and 5.5.11 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted se...
Ibm Filenet Content Manager 5.5.8
Ibm Filenet Content Manager 5.5.10
Ibm Filenet Content Manager 5.5.11
4.6
CVSSv2
CVE-2009-1953
IBM FileNet Content Manager 4.0, 4.0.1, and 4.5, as used in IBM WebSphere Application Server (WAS) and Oracle BEA WebLogic Application Server, when the CE Web Services listener has a certain WSEAF configuration, does not properly restrict use of a cached Subject, which allows rem...
Ibm Filenet Content Manager 4.0.1
Ibm Filenet Content Manager 4.5
Ibm Filenet Content Manager 4.0
3.5
CVSSv2
CVE-2018-1555
IBM FileNet Content Manager 5.2.1 and 5.5.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM...
Ibm Filenet Content Manager 5.2.1
Ibm Filenet Content Manager 5.5.0
Ibm Content Foundation 5.5.0
Ibm Content Foundation 5.2.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22120
CVE-2024-35921
CVE-2024-35874
brute force
CVE-2024-36080
unprivileged
CVE-2024-35917
IDOR
CVE-2024-4947
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »