Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
websphere portal vulnerabilities and exploits
(subscribe to this query)
436
VMScore
CVE-2014-6193
IBM WebSphere Portal 8.0.0 up to and including 8.0.0.1 CF14 and 8.5.0 before CF04, when the Managed Pages setting is enabled, allows remote authenticated users to write to pages via an XML injection attack.
Ibm Websphere Portal 8.5.0.0
Ibm Websphere Portal 8.0.0.1
Ibm Websphere Portal 8.0.0.0
605
VMScore
CVE-2014-6214
Cross-site request forgery (CSRF) vulnerability in IBM WebSphere Portal 8.0.0 up to and including 8.0.0.1 CF15 and 8.5.0 before CF05 allows remote malicious users to hijack the authentication of arbitrary users for requests that insert XSS sequences.
Ibm Websphere Portal 8.5.0.0
Ibm Websphere Portal 8.0.0.1
Ibm Websphere Portal 8.0.0.0
516
VMScore
CVE-2015-7428
Open redirect vulnerability in IBM WebSphere Portal 8.0.x prior to 8.0.0.1 CF20 and 8.5.x prior to 8.5.0.0 CF09 allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via a crafted URL.
Ibm Websphere Portal 8.5.0.0
Ibm Websphere Portal 8.0.0.1
Ibm Websphere Portal 8.0.0.0
445
VMScore
CVE-2012-2181
Directory traversal vulnerability in the Dojo module in IBM WebSphere Portal 7.0.0.1 and 7.0.0.2 before CF14, and 8.0, allows remote malicious users to read arbitrary files via a crafted URL.
Ibm Websphere Portal 7.0.0.1
Ibm Websphere Portal 8.0
Ibm Websphere Portal 7.0.0.2
383
VMScore
CVE-2017-1120
IBM WebSphere Portal 8.5 and 9.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM Reference ...
Ibm Websphere Portal 9.0
Ibm Websphere Portal 8.5
694
VMScore
CVE-2015-7419
IBM WebSphere Portal 8.0.0.1 before CF19 and 8.5.0 before CF09 allows remote malicious users to cause a denial of service (memory consumption) via crafted requests.
Ibm Websphere Portal 8.5.0.0
Ibm Websphere Portal 8.0.0.1
312
VMScore
CVE-2018-1444
IBM WebSphere Portal 8.5 and 9.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID...
Ibm Websphere Portal 8.5.0.0
Ibm Websphere Portal 9.0.0.0
383
VMScore
CVE-2017-1217
IBM WebSphere Portal 8.5 and 9.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID...
Ibm Websphere Portal 9.0
Ibm Websphere Portal 8.5
383
VMScore
CVE-2018-1483
IBM WebSphere Portal 8.5 and 9.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID...
Ibm Websphere Portal 8.5.0.0
Ibm Websphere Portal 9.0
436
VMScore
CVE-2013-4012
IBM WebSphere Portal 8.0.0.x prior to 8.0.0.1 CF09, when Content Template Catalog 4.0 is used, does not require administrative privileges for Portal Application Archive (PAA) file installation, which allows remote authenticated users to modify data or cause a denial of service vi...
Ibm Websphere Portal 8.0.0.0
Ibm Websphere Portal 8.0.0.1
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23692
CVE-2012-1823
memory leak
CVE-2024-0627
CVE-2024-31402
privilege escalation
CVE-2024-36418
remote code execution
CVE-2024-27844
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
6
7
8
9
10
NEXT »