Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
intland codebeamer 10.1.0 vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2020-26516
A CSRF issue exists in Intland codeBeamer ALM 10.x up to and including 10.1.SP4. Requests sent to the server that trigger actions do not contain a CSRF token and can therefore be entirely predicted allowing malicious users to cause the victim's browser to execute undesired a...
Intland Codebeamer 10.1.0
Intland Codebeamer 10.0.0
Intland Codebeamer 10.0.1
Intland Codebeamer 21.04
4.8
CVSSv3
CVE-2020-26517
A cross-site scripting (XSS) issue exists in Intland codeBeamer ALM 10.x up to and including 10.1.SP4. It is possible to perform XSS attacks through using the WebDAV functionality to upload files to a project (Authn users), using the users import functionality (Admin only), and c...
Intland Codebeamer 10.1.0
Intland Codebeamer 10.0.0
Intland Codebeamer 10.0.1
Intland Codebeamer 21.04
5.5
CVSSv3
CVE-2020-26513
An issue exists in Intland codeBeamer ALM 10.x up to and including 10.1.SP4. The ReqIF XML data, used by the codebeamer ALM application to import projects, is parsed by insecurely configured software components, which can be abused for XML External Entity Attacks.
Intland Codebeamer 10.1.0
Intland Codebeamer
7.5
CVSSv3
CVE-2020-26515
An insufficiently protected credentials issue exists in Intland codeBeamer ALM 10.x up to and including 10.1.SP4. The remember-me cookie (CB_LOGIN) issued by the application contains the encrypted user's credentials. However, due to a bug in the application code, those crede...
Intland Codebeamer 10.1.0
Intland Codebeamer
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2006-4304
CVE-2024-4240
arbitrary
CVE-2024-31601
XSS
CVE-2023-20198
CVE-2024-4256
CVE-2024-3342
encryption
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started