Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm tririga application platform 3.4.1.0 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-8893
Multiple cross-site scripting (XSS) vulnerabilities in (1) mainpage.jsp and (2) GetImageServlet.img in IBM TRIRIGA Application Platform 3.2.1.x, 3.3.2 prior to 3.3.2.3, and 3.4.1 prior to 3.4.1.1 allow remote authenticated users to inject arbitrary web script or HTML via a crafte...
Ibm Tririga Application Platform 3.2.1
Ibm Tririga Application Platform 3.4.0.0
Ibm Tririga Application Platform 3.3.2.0
Ibm Tririga Application Platform 3.4.1.0
Ibm Tririga Application Platform 3.4.0.1
Ibm Tririga Application Platform 3.3.2.1
Ibm Tririga Application Platform 3.3.2.2
NA
CVE-2014-8894
Open redirect vulnerability in IBM TRIRIGA Application Platform 3.2.1.x, 3.3.2 prior to 3.3.2.3, and 3.4.1 prior to 3.4.1.1 allows remote authenticated users to redirect users to arbitrary web sites and conduct phishing attacks via the out parameter.
Ibm Tririga Application Platform 3.4.0.0
Ibm Tririga Application Platform 3.3.2.0
Ibm Tririga Application Platform 3.3.2.1
Ibm Tririga Application Platform 3.4.1.0
Ibm Tririga Application Platform 3.4.0.1
Ibm Tririga Application Platform 3.3.2.2
Ibm Tririga Application Platform 3.2.1
NA
CVE-2014-8895
IBM TRIRIGA Application Platform 3.2.1.x, 3.3.2 prior to 3.3.2.3, and 3.4.1 prior to 3.4.1.1 allows remote malicious users to bypass intended access restrictions and read the image files of arbitrary users via a crafted URL.
Ibm Tririga Application Platform 3.4.1.0
Ibm Tririga Application Platform 3.3.2.0
Ibm Tririga Application Platform 3.3.2.1
Ibm Tririga Application Platform 3.4.0.1
Ibm Tririga Application Platform 3.4.0.0
Ibm Tririga Application Platform 3.3.2.2
Ibm Tririga Application Platform 3.2.1
5.4
CVSSv3
CVE-2016-0387
Cross-site scripting (XSS) vulnerability in IBM TRIRIGA Application Platform 3.3 prior to 3.3.2.6, 3.4 prior to 3.4.2.4, and 3.5 prior to 3.5.0.2 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL, a different vulnerability than CVE-2016-28...
Ibm Tririga Application Platform 3.4.2.2
Ibm Tririga Application Platform 3.4.2.1
Ibm Tririga Application Platform 3.3.2.1
Ibm Tririga Application Platform 3.3.2.0
Ibm Tririga Application Platform 3.3.0.1
Ibm Tririga Application Platform 3.3.0.0
Ibm Tririga Application Platform 3.4.2.0
Ibm Tririga Application Platform 3.4.1.2
Ibm Tririga Application Platform 3.3.1.2
Ibm Tririga Application Platform 3.3.1.1
Ibm Tririga Application Platform 3.3.2.4
Ibm Tririga Application Platform 3.4.0.0
Ibm Tririga Application Platform 3.5.0.1
Ibm Tririga Application Platform 3.4.1.3
Ibm Tririga Application Platform 3.4.1.1
Ibm Tririga Application Platform 3.3.2.3
Ibm Tririga Application Platform 3.3.2.5
Ibm Tririga Application Platform 3.5.0.0
Ibm Tririga Application Platform 3.4.2.3
Ibm Tririga Application Platform 3.4.1.0
Ibm Tririga Application Platform 3.4.0.1
Ibm Tririga Application Platform 3.3.2.2
7.7
CVSSv3
CVE-2016-0362
IBM TRIRIGA Application Platform 3.3 prior to 3.3.2.6, 3.4 prior to 3.4.2.4, and 3.5 prior to 3.5.0.2 allows remote authenticated users to conduct server-side request forgery (SSRF) attacks, and trigger network traffic to arbitrary intranet or Internet hosts, via a crafted proxy ...
Ibm Tririga Application Platform 3.4.1.3
Ibm Tririga Application Platform 3.4.1.1
Ibm Tririga Application Platform 3.3.2.4
Ibm Tririga Application Platform 3.3.2.2
Ibm Tririga Application Platform 3.3.2.0
Ibm Tririga Application Platform 3.3.0.2
Ibm Tririga Application Platform 3.3.0.0
Ibm Tririga Application Platform 3.5.0.0
Ibm Tririga Application Platform 3.4.2.3
Ibm Tririga Application Platform 3.4.2.2
Ibm Tririga Application Platform 3.4.2.1
Ibm Tririga Application Platform 3.3.1.3
Ibm Tririga Application Platform 3.3.1.2
Ibm Tririga Application Platform 3.3.1.1
Ibm Tririga Application Platform 3.3.1.0
Ibm Tririga Application Platform 3.4.1.0
Ibm Tririga Application Platform 3.4.0.1
Ibm Tririga Application Platform 3.4.0.0
Ibm Tririga Application Platform 3.3.2.5
Ibm Tririga Application Platform 3.5.0.1
Ibm Tririga Application Platform 3.4.2.0
Ibm Tririga Application Platform 3.4.1.2
8.8
CVSSv3
CVE-2016-0374
The builder tools in IBM TRIRIGA Application Platform 3.3 prior to 3.3.2.6, 3.4 prior to 3.4.2.4, and 3.5 prior to 3.5.0.2 allow remote authenticated users to gain privileges for application modification via unspecified vectors.
Ibm Tririga Application Platform 3.5.0.1
Ibm Tririga Application Platform 3.5.0.0
Ibm Tririga Application Platform 3.4.2.3
Ibm Tririga Application Platform 3.4.2.2
Ibm Tririga Application Platform 3.3.2.1
Ibm Tririga Application Platform 3.3.2.0
Ibm Tririga Application Platform 3.3.1.3
Ibm Tririga Application Platform 3.3.1.2
Ibm Tririga Application Platform 3.3.1.1
Ibm Tririga Application Platform 3.4.2.0
Ibm Tririga Application Platform 3.4.1.2
Ibm Tririga Application Platform 3.3.2.5
Ibm Tririga Application Platform 3.3.2.3
Ibm Tririga Application Platform 3.3.1.0
Ibm Tririga Application Platform 3.3.0.1
Ibm Tririga Application Platform 3.4.1.1
Ibm Tririga Application Platform 3.4.1.0
Ibm Tririga Application Platform 3.4.0.1
Ibm Tririga Application Platform 3.4.0.0
Ibm Tririga Application Platform 3.4.2.1
Ibm Tririga Application Platform 3.4.1.3
Ibm Tririga Application Platform 3.3.2.4
5.4
CVSSv3
CVE-2016-9737
IBM TRIRIGA 3.3, 3.4, and 3.5 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM Reference #: ...
Ibm Tririga Application Platform 3.5.2
Ibm Tririga Application Platform 3.3.1.3
Ibm Tririga Application Platform 3.3.2.3
Ibm Tririga Application Platform 3.3.2.4
Ibm Tririga Application Platform 3.3.2.5
Ibm Tririga Application Platform 3.4.2.5
Ibm Tririga Application Platform 3.3.2.1
Ibm Tririga Application Platform 3.4.0.1
Ibm Tririga Application Platform 3.4.1.1
Ibm Tririga Application Platform 3.4.2.2
Ibm Tririga Application Platform 3.4.2.4
Ibm Tririga Application Platform 3.3.0.1
Ibm Tririga Application Platform 3.3.0.2
Ibm Tririga Application Platform 3.3.1.0
Ibm Tririga Application Platform 3.3.1.1
Ibm Tririga Application Platform 3.4.1.2
Ibm Tririga Application Platform 3.4.1.3
Ibm Tririga Application Platform 3.4.2.0
Ibm Tririga Application Platform 3.4.2.1
Ibm Tririga Application Platform 3.3.0.0
Ibm Tririga Application Platform 3.3.1.2
Ibm Tririga Application Platform 3.3.2.0
8.8
CVSSv3
CVE-2017-1153
IBM TRIRIGA Report Manager 3.2 up to and including 3.5 contains a vulnerability that could allow an authenticated user to execute actions that they do not have access to. IBM Reference #: 1999563.
Ibm Tririga Application Platform 3.5.1.3
Ibm Tririga Application Platform 3.5.0.0
Ibm Tririga Application Platform 3.3.1.3
Ibm Tririga Application Platform 3.3.2.1
Ibm Tririga Application Platform 3.4.1.0
Ibm Tririga Application Platform 3.4.1.2
Ibm Tririga Application Platform 3.4.2.3
Ibm Tririga Application Platform 3.4.2.5
Ibm Tririga Application Platform 3.5.0.2
Ibm Tririga Application Platform 3.5.1
Ibm Tririga Application Platform 3.5.1.1
Ibm Tririga Application Platform 3.5.1.2
Ibm Tririga Application Platform 3.3.2.3
Ibm Tririga Application Platform 3.3.2.4
Ibm Tririga Application Platform 3.3.2.5
Ibm Tririga Application Platform 3.4.0.0
Ibm Tririga Application Platform 3.3.0.1
Ibm Tririga Application Platform 3.3.0.2
Ibm Tririga Application Platform 3.3.1.0
Ibm Tririga Application Platform 3.3.1.1
Ibm Tririga Application Platform 3.3.1.2
Ibm Tririga Application Platform 3.4.1.3
4.3
CVSSv3
CVE-2017-1171
The IBM TRIRIGA Application Platform 3.3, 3,4, and 3,5 contain a vulnerability that could allow an authenticated user to execute Application actions they do not have access to. IBM Reference #: 2001083.
Ibm Tririga Application Platform 3.3.1.1
Ibm Tririga Application Platform 3.3.1.3
Ibm Tririga Application Platform 3.4.0.0
Ibm Tririga Application Platform 3.4.1.0
Ibm Tririga Application Platform 3.4.2.3
Ibm Tririga Application Platform 3.4.2.5
Ibm Tririga Application Platform 3.5.1.1
Ibm Tririga Application Platform 3.5.1.3
Ibm Tririga Application Platform 3.3.2.1
Ibm Tririga Application Platform 3.3.2.2
Ibm Tririga Application Platform 3.3.2.3
Ibm Tririga Application Platform 3.3.2.4
Ibm Tririga Application Platform 3.5.0.0
Ibm Tririga Application Platform 3.5.0.1
Ibm Tririga Application Platform 3.5.0.2
Ibm Tririga Application Platform 3.5.1
Ibm Tririga Application Platform 3.3.0.0
Ibm Tririga Application Platform 3.3.0.1
Ibm Tririga Application Platform 3.3.0.2
Ibm Tririga Application Platform 3.3.1.0
Ibm Tririga Application Platform 3.4.1.2
Ibm Tririga Application Platform 3.4.1.3
5.4
CVSSv3
CVE-2016-5980
IBM TRIRIGA Application Platform is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.
Ibm Tririga Application Platform 3.4.2.1
Ibm Tririga Application Platform 3.4.2.2
Ibm Tririga Application Platform 3.4.2.3
Ibm Tririga Application Platform 3.4.1.3
Ibm Tririga Application Platform 3.3.0.2
Ibm Tririga Application Platform 3.3.1.0
Ibm Tririga Application Platform 3.3.1.1
Ibm Tririga Application Platform 3.3.1.2
Ibm Tririga Application Platform 3.5.1.1
Ibm Tririga Application Platform 3.4.2.4
Ibm Tririga Application Platform 3.4.1.1
Ibm Tririga Application Platform 3.4.1.0
Ibm Tririga Application Platform 3.3.2.5
Ibm Tririga Application Platform 3.3.0.1
Ibm Tririga Application Platform 3.3.1.3
Ibm Tririga Application Platform 3.5.0.0
Ibm Tririga Application Platform 3.5.1.0
Ibm Tririga Application Platform 3.3.2.2
Ibm Tririga Application Platform 3.3.2.0
Ibm Tririga Application Platform 3.3.2.1
Ibm Tririga Application Platform 3.3.2.3
Ibm Tririga Application Platform 3.5.0.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-20065
open redirect
CVE-2024-1086
path traversal
CVE-2024-29825
XXE
CVE-2024-29822
CVE-2024-20696
CVE-2024-3564
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »