Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mobilefirst platform foundation vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2017-1772
IBM Worklight (IBM MobileFirst Platform Foundation 6.3, 7.0, 7.1, and 8.0) is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosur...
Ibm Mobilefirst Platform Foundation 6.3.0.0
Ibm Mobilefirst Platform Foundation 7.1.0.0
Ibm Mobilefirst Platform Foundation 7.0.0.0
Ibm Mobilefirst Platform Foundation 8.0.0.0
4.3
CVSSv2
CVE-2017-1500
A Reflected Cross Site Scripting (XSS) vulnerability exists in the authorization function exposed by RESTful Web Api of IBM Worklight Framework 6.1, 6.2, 6.3, 7.0, 7.1, and 8.0. The vulnerable parameter is "scope"; if you set as its value a "realm" not defined...
Ibm Mobilefirst Platform Foundation 6.3.0.0
Ibm Mobilefirst Platform Foundation 7.0.0.0
Ibm Mobilefirst Platform Foundation 8.0.0.0
Ibm Mobilefirst Platform Foundation 7.1.0.0
Ibm Worklight 6.2.0.1
Ibm Worklight 6.1.0.2
5
CVSSv2
CVE-2020-4226
IBM MobileFirst Platform Foundation 8.0.0.0 stores highly sensitive information in URL parameters. This may lead to information disclosure if unauthorized parties have access to the URLs via server logs, referrer header or browser history. IBM X-Force ID: 175207.
Ibm Mobilefirst Platform Foundation 8.0.0.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3400
CVE-2023-7252
CVE-2024-21111
denial of service
CVE-2024-29661
CVE-2024-22856
remote attackers
encryption
CVE-2023-38299
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started