Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
websphere portal vulnerabilities and exploits
(subscribe to this query)
3.5
CVSSv2
CVE-2015-0139
Cross-site scripting (XSS) vulnerability in IBM WebSphere Portal 8.0.0 up to and including 8.0.0.1 CF15 and 8.5.0 before CF05 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL.
Ibm Websphere Portal 8.5.0.0
Ibm Websphere Portal 8.0.0.1
Ibm Websphere Portal 8.0.0.0
5.8
CVSSv2
CVE-2015-7428
Open redirect vulnerability in IBM WebSphere Portal 8.0.x prior to 8.0.0.1 CF20 and 8.5.x prior to 8.5.0.0 CF09 allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via a crafted URL.
Ibm Websphere Portal 8.5.0.0
Ibm Websphere Portal 8.0.0.1
Ibm Websphere Portal 8.0.0.0
4.3
CVSSv2
CVE-2015-7457
Cross-site scripting (XSS) vulnerability in IBM WebSphere Portal 8.0.x prior to 8.0.0.1 CF20 and 8.5.x prior to 8.5.0.0 CF09 allows remote malicious users to inject arbitrary web script or HTML via a crafted URL.
Ibm Websphere Portal 8.5.0.0
Ibm Websphere Portal 8.0.0.1
Ibm Websphere Portal 8.0.0.0
5
CVSSv2
CVE-2012-4834
Directory traversal vulnerability in LayerLoader.jsp in the theme component in IBM WebSphere Portal 7.0.0.1 and 7.0.0.2 before CF19 and 8.0 before CF03 allows remote malicious users to read arbitrary files via a crafted URI.
Ibm Websphere Portal 7.0.0.1
Ibm Websphere Portal 8.0.0.0
Ibm Websphere Portal 7.0.0.2
3.5
CVSSv2
CVE-2018-1444
IBM WebSphere Portal 8.5 and 9.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID...
Ibm Websphere Portal 8.5.0.0
Ibm Websphere Portal 9.0.0.0
4.3
CVSSv2
CVE-2014-0955
Cross-site scripting (XSS) vulnerability in IBM WebSphere Portal 8.0 prior to 8.0.0.1 CF12, when Social Rendering in Connections integration is enabled, allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
Ibm Websphere Portal 8.0.0.1
Ibm Websphere Portal 8.0.0.0
4.3
CVSSv2
CVE-2018-1361
IBM WebSphere Portal 8.5 and 9.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID...
Ibm Websphere Portal 8.5.0.0
Ibm Websphere Portal 9.0.0.0
3.5
CVSSv2
CVE-2014-0901
Cross-site scripting (XSS) vulnerability in the Social Rendering implementation in the IBM Connections integration in IBM WebSphere Portal 8.0.0.x prior to 8.0.0.1 CF11 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
Ibm Websphere Portal 8.0.0.1
Ibm Websphere Portal 8.0.0.0
3.5
CVSSv2
CVE-2013-5378
Cross-site scripting (XSS) vulnerability in IBM WebSphere Portal 8.x prior to 8.0.0.1 CF8 allows remote authenticated users to inject arbitrary web script or HTML by leveraging incorrect IBM Connections integration.
Ibm Websphere Portal 8.0.0.1
Ibm Websphere Portal 8.0.0.0
6.8
CVSSv2
CVE-2017-1156
IBM WebSphere Portal 8.5 and 9.0 could allow a remote malicious user to conduct phishing attacks, using an open redirect attack. By persuading a victim to visit a specially-crafted Web site, a remote attacker could exploit this vulnerability to spoof the URL displayed to redirect...
Ibm Websphere Portal 9.0
Ibm Websphere Portal 8.5
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
6
7
8
9
10
NEXT »