Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm jazz reporting service 6.0 vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2016-2889
Cross-site request forgery (CSRF) vulnerability in the Report Builder and Data Collection Component (DCC) in IBM Jazz Reporting Service (JRS) 5.x prior to 5.0.2 ifix016, 6.0 and 6.0.1 prior to 6.0.1 ifix005, and 6.0.2 before ifix002 allows remote authenticated users to hijack the...
Ibm Jazz Reporting Service 5.0.1
Ibm Jazz Reporting Service 5.0
Ibm Jazz Reporting Service 6.0.2
Ibm Jazz Reporting Service 6.0.1
Ibm Jazz Reporting Service 6.0
Ibm Jazz Reporting Service 5.0.2
3.5
CVSSv2
CVE-2019-4495
IBM Jazz Reporting Service (JRS) 6.0, 6.0.1, 6.0.2, 6.0.3, 6.0.4, 6.0.5, 6.0.6, and 6.0.6.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to cred...
Ibm Jazz Reporting Service 6.0.4
Ibm Jazz Reporting Service 6.0
Ibm Jazz Reporting Service 6.0.2
Ibm Jazz Reporting Service 6.0.1
Ibm Jazz Reporting Service 6.0.3
Ibm Jazz Reporting Service 6.0.5
Ibm Jazz Reporting Service 6.0.6
Ibm Jazz Reporting Service 6.0.6.1
3.5
CVSSv2
CVE-2019-4494
IBM Jazz Reporting Service (JRS) 6.0, 6.0.1, 6.0.2, 6.0.3, 6.0.4, 6.0.5, 6.0.6, and 6.0.6.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to cred...
Ibm Jazz Reporting Service 6.0.4
Ibm Jazz Reporting Service 6.0
Ibm Jazz Reporting Service 6.0.2
Ibm Jazz Reporting Service 6.0.1
Ibm Jazz Reporting Service 6.0.3
Ibm Jazz Reporting Service 6.0.5
Ibm Jazz Reporting Service 6.0.6
Ibm Jazz Reporting Service 6.0.6.1
3.5
CVSSv2
CVE-2019-4497
IBM Jazz Reporting Service (JRS) 6.0, 6.0.1, 6.0.2, 6.0.3, 6.0.4, 6.0.5, 6.0.6, and 6.0.6.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to cred...
Ibm Jazz Reporting Service 6.0.4
Ibm Jazz Reporting Service 6.0
Ibm Jazz Reporting Service 6.0.2
Ibm Jazz Reporting Service 6.0.1
Ibm Jazz Reporting Service 6.0.3
Ibm Jazz Reporting Service 6.0.5
Ibm Jazz Reporting Service 6.0.6
Ibm Jazz Reporting Service 6.0.6.1
4
CVSSv2
CVE-2017-1370
IBM Jazz Reporting Service (JRS) 5.0 and 6.0 could disclose sensitive information, including user credentials, through an error message from the Report Builder administrator configuration page. IBM X-Force ID: 126863.
Ibm Jazz Reporting Service 5.0
Ibm Jazz Reporting Service 6.0.4
Ibm Jazz Reporting Service 5.0.1
Ibm Jazz Reporting Service 5.0.2
Ibm Jazz Reporting Service 6.0.2
Ibm Jazz Reporting Service 6.0.3
Ibm Jazz Reporting Service 6.0
Ibm Jazz Reporting Service 6.0.1
4.3
CVSSv2
CVE-2016-2888
Cross-site scripting (XSS) vulnerability in the Report Builder and Data Collection Component (DCC) in IBM Jazz Reporting Service (JRS) 5.x prior to 5.0.2 ifix016 and 6.x prior to 6.0.1 ifix005 allows remote authenticated users to inject arbitrary web script or HTML via a crafted ...
Ibm Jazz Reporting Service 6.0.1
Ibm Jazz Reporting Service 6.0
Ibm Jazz Reporting Service 5.0.2
Ibm Jazz Reporting Service 5.0.1
Ibm Jazz Reporting Service 5.0
3.5
CVSSv2
CVE-2016-0313
Cross-site scripting (XSS) vulnerability in the Report Builder and Data Collection Component (DCC) in IBM Jazz Reporting Service (JRS) 5.x prior to 5.0.2 ifix016 and 6.x prior to 6.0.1 ifix005 allows remote authenticated users to inject arbitrary web script or HTML via a crafted ...
Ibm Jazz Reporting Service 5.0.2
Ibm Jazz Reporting Service 5.0
Ibm Jazz Reporting Service 6.0.1
Ibm Jazz Reporting Service 6.0
Ibm Jazz Reporting Service 5.0.1
4
CVSSv2
CVE-2016-0314
The Report Builder and Data Collection Component (DCC) in IBM Jazz Reporting Service (JRS) 5.x prior to 5.0.2 ifix016 and 6.x prior to 6.0.1 ifix005 allow remote authenticated users to conduct clickjacking attacks via unspecified vectors.
Ibm Jazz Reporting Service 6.0.1
Ibm Jazz Reporting Service 5.0
Ibm Jazz Reporting Service 6.0
Ibm Jazz Reporting Service 5.0.2
Ibm Jazz Reporting Service 5.0.1
3.5
CVSSv2
CVE-2016-0350
Cross-site scripting (XSS) vulnerability in the Report Builder and Data Collection Component (DCC) in IBM Jazz Reporting Service (JRS) 5.x prior to 5.0.2 ifix016 and 6.x prior to 6.0.1 ifix005 allows remote authenticated users to inject arbitrary web script or HTML via a crafted ...
Ibm Jazz Reporting Service 5.0
Ibm Jazz Reporting Service 6.0
Ibm Jazz Reporting Service 5.0.1
Ibm Jazz Reporting Service 6.0.1
Ibm Jazz Reporting Service 5.0.2
6.5
CVSSv2
CVE-2016-0315
The Report Builder and Data Collection Component (DCC) in IBM Jazz Reporting Service (JRS) 5.x prior to 5.0.2 ifix016 and 6.x prior to 6.0.1 ifix005 maintain session ID validity after a logout action, which allows remote authenticated users to hijack sessions by leveraging an una...
Ibm Jazz Reporting Service 6.0.1
Ibm Jazz Reporting Service 5.0.2
Ibm Jazz Reporting Service 5.0
Ibm Jazz Reporting Service 6.0
Ibm Jazz Reporting Service 5.0.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5324
path traversal
CVE-2024-4743
CVE-2024-5184
TCP
CVE-2024-27822
code injection
CVE-2024-28995
CVE-2023-20938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »