Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm content navigator vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2018-1366
IBM Content Navigator 2.0 and 3.0 is vulnerable to Comma Separated Value (CSV) Injection. An attacker could exploit this vulnerability to exploit other vulnerabilities in spreadsheet software. IBM X-Force ID: 137452.
Ibm Content Navigator 2.0.2.8
Ibm Content Navigator 3.0.0
Ibm Content Navigator 3.0.1
Ibm Content Navigator 3.0.2
Ibm Content Navigator 3.0.3
Ibm Content Navigator 2.0.2.7
3.5
CVSSv2
CVE-2017-1282
IBM Content Navigator & CMIS 2.0 and 3.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IB...
Ibm Content Navigator 2.0.3.8
Ibm Content Navigator 2.0.3.5
Ibm Content Navigator 3.0.0
Ibm Content Navigator 2.0.3.6
Ibm Content Navigator 2.0.3.7
3.5
CVSSv2
CVE-2017-1331
IBM Content Navigator 2.0.3 and 3.0.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-For...
Ibm Content Navigator 2.0.3.6
Ibm Content Navigator 2.0.3.7
Ibm Content Navigator 2.0.3.8
Ibm Content Navigator 3.0.0
Ibm Content Navigator 2.0.3.5
3.5
CVSSv2
CVE-2018-1496
IBM Content Navigator 2.0.3, 3.0.0, 3.0.1, 3.0.2, and 3.0.3 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trus...
Ibm Content Navigator 2.0.3
Ibm Content Navigator 3.0.1
Ibm Content Navigator 3.0.2
Ibm Content Navigator 3.0.3
Ibm Content Navigator 3.0.0
3.5
CVSSv2
CVE-2014-0858
IBM Content Navigator 2.x prior to 2.0.2.2-ICN-FP002 allows remote authenticated users to bypass intended access restrictions and conduct deleteAction attacks via a modified URL.
Ibm Content Navigator 2.0.1
Ibm Content Navigator 2.0.2
Ibm Content Navigator 2.0.0
3.5
CVSSv2
CVE-2014-0874
Cross-site scripting (XSS) vulnerability in IBM Content Navigator 2.x prior to 2.0.2.2-ICN-FP002 allows remote authenticated users to inject arbitrary web script or HTML via an unspecified parameter.
Ibm Content Navigator 2.0.0
Ibm Content Navigator 2.0.1
Ibm Content Navigator 2.0.2
3.5
CVSSv2
CVE-2017-1502
IBM Content Navigator & CMIS 2.0.3, 3.0.0, and 3.0.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted...
Ibm Content Navigator 2.0.3
Ibm Content Navigator 3.0.0
Ibm Content Navigator 3.0.1
4.3
CVSSv2
CVE-2014-8911
Cross-site scripting (XSS) vulnerability in IBM Content Navigator 2.0.0 and 2.0.1 prior to 2.0.1.2 FP002 IF003 and 2.0.3 prior to 2.0.3.2 FP002 allows remote malicious users to inject arbitrary web script or HTML via the Accept-Language HTTP header.
Ibm Content Navigator 2.0.1
Ibm Content Navigator 2.0.3
Ibm Content Navigator 2.0.0
3.5
CVSSv2
CVE-2017-1522
IBM Content Navigator & CMIS 2.0.3, 3.0.0, and 3.0.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted...
Ibm Content Navigator 2.0.3.8
Ibm Content Navigator 3.0.0
Ibm Content Navigator 3.0.1
6.4
CVSSv2
CVE-2018-1364
IBM Content Navigator 2.0 and 3.0 is vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 137449.
Ibm Content Navigator 2.0.3
Ibm Content Navigator 3.0.3
Ibm Content Navigator 3.0.2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
denial of service
CVE-2024-27371
CVE-2024-20405
CVE-2024-31627
CVE-2024-31625
race condition
CVE-2024-4358
cross-site scripting
CVE-2023-20938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »