Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm emptoris sourcing vulnerabilities and exploits
(subscribe to this query)
312
VMScore
CVE-2016-8946
IBM Emptoris Sourcing 9.5.x up to and including 10.1.x is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted s...
Ibm Emptoris Sourcing 10.1.0
Ibm Emptoris Sourcing 10.0.2
Ibm Emptoris Sourcing 10.0.0
Ibm Emptoris Sourcing 10.1.1
Ibm Emptoris Sourcing 9.5
Ibm Emptoris Sourcing 10.0.4
Ibm Emptoris Sourcing 10.0.1
312
VMScore
CVE-2014-3033
Cross-site scripting (XSS) vulnerability in IBM Emptoris Sourcing Portfolio 9.5.x prior to 9.5.1.3, 10.0.0.x prior to 10.0.0.1, 10.0.1.x prior to 10.0.1.3, and 10.0.2.x prior to 10.0.2.4 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL.
Ibm Emptoris Sourcing Portfolio 10.0.1.1
Ibm Emptoris Sourcing Portfolio 10.0.1.0
Ibm Emptoris Sourcing Portfolio 10.0.0.0
Ibm Emptoris Sourcing Portfolio 9.5.1.2
Ibm Emptoris Sourcing Portfolio 10.0.2.0
Ibm Emptoris Sourcing Portfolio 10.0.1.2
Ibm Emptoris Sourcing Portfolio 9.5.0.1
Ibm Emptoris Sourcing Portfolio 9.5.0.0
Ibm Emptoris Sourcing Portfolio 10.0.2.3
Ibm Emptoris Sourcing Portfolio 10.0.2.2
Ibm Emptoris Sourcing Portfolio 9.5.1.1
Ibm Emptoris Sourcing Portfolio 9.5.1.0
Ibm Emptoris Sourcing Portfolio 9.5.0.2
436
VMScore
CVE-2014-4790
IBM Emptoris Sourcing Portfolio 9.5.x prior to 9.5.1.3, 10.0.0.x prior to 10.0.0.1, 10.0.1.x prior to 10.0.1.3, and 10.0.2.x prior to 10.0.2.4 and Emptoris Spend Analysis 9.5.x prior to 9.5.0.4, 10.0.1.x prior to 10.0.1.3, and 10.0.2.x prior to 10.0.2.4 do not properly restrict u...
Ibm Emptoris Spend Analysis 10.0.2.2
Ibm Emptoris Spend Analysis 9.5.0.2
Ibm Emptoris Spend Analysis 9.5.0.3
Ibm Emptoris Spend Analysis 10.0.2.0
Ibm Emptoris Spend Analysis 10.0.1.0
Ibm Emptoris Spend Analysis 9.5.0.0
Ibm Emptoris Spend Analysis 9.5.0.1
Ibm Emptoris Spend Analysis 10.0.1.1
Ibm Emptoris Spend Analysis 10.0.1.2
Ibm Emptoris Sourcing Portfolio 10.0.1.0
Ibm Emptoris Sourcing Portfolio 10.0.0.0
Ibm Emptoris Sourcing Portfolio 10.0.2.3
Ibm Emptoris Sourcing Portfolio 9.5.1.2
Ibm Emptoris Sourcing Portfolio 9.5.1.1
Ibm Emptoris Sourcing Portfolio 9.5.1.0
Ibm Emptoris Sourcing Portfolio 10.0.1.2
Ibm Emptoris Sourcing Portfolio 10.0.1.1
Ibm Emptoris Sourcing Portfolio 9.5.0.0
Ibm Emptoris Sourcing Portfolio 10.0.2.2
Ibm Emptoris Sourcing Portfolio 10.0.2.0
Ibm Emptoris Sourcing Portfolio 9.5.0.2
Ibm Emptoris Sourcing Portfolio 9.5.0.1
356
VMScore
CVE-2014-6212
The Echo API in IBM Emptoris Contract Management 9.5.x prior to 9.5.0.6 iFix11, 10.0.0.x prior to 10.0.0.1 iFix12, 10.0.1.x prior to 10.0.1.5 iFix2, and 10.0.2.x prior to 10.0.2.2 iFix5; Emptoris Sourcing 9.5 prior to 9.5.1.3 iFix2, 10.0.0.x prior to 10.0.0.1 iFix1, 10.0.1.x prio...
Ibm Emptoris Sourcing Portfolio 9.5.0.0
Ibm Emptoris Sourcing Portfolio 10.0.0.0
Ibm Emptoris Sourcing Portfolio 10.0.0.1
Ibm Emptoris Sourcing Portfolio 10.0.2.4
Ibm Emptoris Sourcing Portfolio 9.5.1.0
Ibm Emptoris Sourcing Portfolio 9.5.1.1
Ibm Emptoris Sourcing Portfolio 10.0.1.3
Ibm Emptoris Sourcing Portfolio 10.0.2.0
Ibm Emptoris Sourcing Portfolio 9.5.0.1
Ibm Emptoris Sourcing Portfolio 9.5.0.2
Ibm Emptoris Sourcing Portfolio 10.0.1.0
Ibm Emptoris Sourcing Portfolio 10.0.1.1
Ibm Emptoris Sourcing Portfolio 10.0.1.2
Ibm Emptoris Sourcing Portfolio 9.5.1.2
Ibm Emptoris Sourcing Portfolio 9.5.1.3
Ibm Emptoris Sourcing Portfolio 10.0.2.2
Ibm Emptoris Sourcing Portfolio 10.0.2.3
Ibm Emptoris Program Management 10.0.1.2
Ibm Emptoris Program Management 10.0.1.3
Ibm Emptoris Program Management 10.0.0.2
Ibm Emptoris Program Management 10.0.0.3
Ibm Emptoris Program Management 10.0.2.1
534
VMScore
CVE-2014-3040
Cross-site request forgery (CSRF) vulnerability in IBM Emptoris Contract Management 9.5.x prior to 9.5.0.6 iFix 10, 10.0.0.x prior to 10.0.0.1 iFix 10, 10.0.1.x prior to 10.0.1.4, and 10.0.2.x prior to 10.0.2.2 iFix 2; Emptoris Sourcing Portfolio 9.5.x prior to 9.5.1.3, 10.0.0.x ...
Ibm Emptoris Spend Analysis 10.0.0.1
Ibm Emptoris Spend Analysis 10.0.0.0
Ibm Emptoris Spend Analysis 10.0.2.0
Ibm Emptoris Spend Analysis 10.0.1.2
Ibm Emptoris Spend Analysis 9.5.0.1
Ibm Emptoris Spend Analysis 9.5.0.0
Ibm Emptoris Spend Analysis 10.0.2.2
Ibm Emptoris Spend Analysis 9.5.0.3
Ibm Emptoris Spend Analysis 9.5.0.2
Ibm Emptoris Spend Analysis 10.0.1.1
Ibm Emptoris Spend Analysis 10.0.1.0
Ibm Emptoris Sourcing Portfolio 10.0.1.0
Ibm Emptoris Sourcing Portfolio 10.0.0.0
Ibm Emptoris Sourcing Portfolio 10.0.1.2
Ibm Emptoris Sourcing Portfolio 10.0.1.1
Ibm Emptoris Sourcing Portfolio 9.5.0.0
Ibm Emptoris Sourcing Portfolio 10.0.2.2
Ibm Emptoris Sourcing Portfolio 10.0.2.0
Ibm Emptoris Sourcing Portfolio 9.5.1.0
Ibm Emptoris Sourcing Portfolio 9.5.0.2
Ibm Emptoris Sourcing Portfolio 9.5.0.1
Ibm Emptoris Sourcing Portfolio 10.0.2.3
356
VMScore
CVE-2019-4308
IBM Emptoris Sourcing 10.1.0 up to and including 10.1.3, IBM Contract Management 10.1.0 up to and including 10.1.3, and IBM Emptoris Spend Analysis 10.1.0 up to and including 10.1.3 could allow an authenticated user to obtain sensitive information from error messages IBM X-Force ...
Ibm Emptoris Sourcing
Ibm Emptoris Spend Analysis
Ibm Emptoris Contract Management
356
VMScore
CVE-2019-4485
IBM Emptoris Sourcing 10.1.0 up to and including 10.1.3, IBM Contract Management 10.1.0 up to and including 10.1.3, and IBM Emptoris Spend Analysis 10.1.0 up to and including 10.1.3 generates an error message that includes sensitive information that could be used in further attac...
Ibm Emptoris Sourcing
Ibm Emptoris Spend Analysis
Ibm Emptoris Contract Management
356
VMScore
CVE-2019-4484
IBM Emptoris Sourcing 10.1.0 up to and including 10.1.3, IBM Contract Management 10.1.0 up to and including 10.1.3, and IBM Emptoris Spend Analysis 10.1.0 up to and including 10.1.3 generates an error message that includes sensitive information that could be used in further attac...
Ibm Emptoris Sourcing
Ibm Emptoris Spend Analysis
Ibm Emptoris Contract Management
436
VMScore
CVE-2016-0329
Open redirect vulnerability in IBM Emptoris Sourcing 10.0.0.x prior to 10.0.0.1_iFix3, 10.0.1.x prior to 10.0.1.3_iFix3, 10.0.2.x prior to 10.0.2.8_iFix1, 10.0.4.0 prior to 10.0.4.0_iFix8, and 10.1.0.0 prior to 10.1.0.0_iFix3 allows remote malicious users to redirect users to arb...
Ibm Emptoris Sourcing
570
VMScore
CVE-2020-4896
IBM Emptoris Sourcing 10.1.0, 10.1.1, and 10.1.3 is vulnerable to web cache poisoning, caused by improper input validation by modifying HTTP request headers. IBM X-Force ID: 190987.
Ibm Emptoris Sourcing
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-40673
CVE-2024-36674
CVE-2024-27348
unspecified
CVE-2024-24919
CVE-2024-4870
malicious code
CVE-2024-2019
hard-coded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2