Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm planning analytics 2.0 vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2020-4873
IBM Planning Analytics 2.0 could allow an malicious user to obtain sensitive information due to an overly permissive CORS policy. IBM X-Force ID: 190836.
Ibm Planning Analytics 2.0
5.8
CVSSv2
CVE-2020-4882
IBM Planning Analytics 2.0 could be vulnerable to a Server-Side Request Forgery (SSRF) attack by constucting URLs from user-controlled data . This could enable malicious users to make arbitrary requests to the internal network or to the local file system. IBM X-Force ID: 190852.
Ibm Planning Analytics 2.0
4
CVSSv2
CVE-2021-29853
IBM Planning Analytics 2.0 could expose information that could be used to to create attacks by not validating the return values from some methods or functions. IBM X-Force ID: 205529.
Ibm Planning Analytics 2.0
4.3
CVSSv2
CVE-2020-4527
IBM Planning Analytics 2.0 could allow a remote malicious user to obtain sensitive information, caused by the failure to set the Secure flag for the session cookie in TLS mode. By intercepting its transmission within an HTTP session, an attacker could exploit this vulnerability t...
Ibm Planning Analytics 2.0
5
CVSSv2
CVE-2020-4562
IBM Planning Analytics 2.0 could allow a remote malicious user to obtain sensitive information by allowing cross-window communication with unrestricted target origin via documentation frames.
Ibm Planning Analytics 2.0
4
CVSSv2
CVE-2020-4648
A vulnerability exsists in IBM Planning Analytics 2.0 whereby avatars in Planning Analytics Workspace could be modified by other users without authorization to do so. IBM X-Force ID: 186019.
Ibm Planning Analytics 2.0
4
CVSSv2
CVE-2020-4361
IBM Planning Analytics 2.0 could allow a remote malicious user to obtain sensitive information by disclosing private IP addresses in HTTP responses. IBM X-Force ID: 178766.
Ibm Planning Analytics 2.0
6.5
CVSSv2
CVE-2019-4612
IBM Planning Analytics 2.0 is vulnerable to malicious file upload in the My Account Portal. Attackers can make use of this weakness and upload malicious executable files into the system and it can be sent to victim for performing further attacks. IBM X-Force ID: 168523.
Ibm Planning Analytics 2.0
5
CVSSv2
CVE-2021-20526
IBM Planning Analytics 2.0 could allow a remote malicious user to obtain sensitive information, caused by the failure to set the HTTPOnly flag. A remote attacker could exploit this vulnerability to obtain sensitive information from the cookie. IBM X-Force ID: 198755.
Ibm Planning Analytics 2.0
NA
CVE-2023-42017
IBM Planning Analytics Local 2.0 could allow a remote malicious user to upload arbitrary files, caused by the improper validation of file extensions. By sending a specially crafted HTTP request, a remote attacker could exploit this vulnerability to upload a malicious script, whic...
Ibm Planning Analytics 2.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-2907
hardcoded
inject
CVE-2024-20359
CVE-2024-2467
CVE-2024-4077
CVE-2024-22391
camera
CVE-2024-20353
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »