Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm websphere portal 8.5.0.0 vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2017-1761
IBM WebSphere Portal 7.0, 8.0, 8.5, and 9.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM...
Ibm Websphere Portal 8.5.0.0
Ibm Websphere Portal 8.0.0.1
Ibm Websphere Portal 7.0.0.0
Ibm Websphere Portal 8.0.0.0
Ibm Websphere Portal 7.0.0.2
Ibm Websphere Portal 9.0.0.0
4.3
CVSSv2
CVE-2018-1401
IBM WebSphere Portal 8.0, 8.5, and 9.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Fo...
Ibm Websphere Portal 8.5.0.0
Ibm Websphere Portal 8.0.0.0
Ibm Websphere Portal 9.0.0.0
4.3
CVSSv2
CVE-2018-1361
IBM WebSphere Portal 8.5 and 9.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID...
Ibm Websphere Portal 8.5.0.0
Ibm Websphere Portal 9.0.0.0
5
CVSSv2
CVE-2017-1698
IBM WebSphere Portal 7.0, 8.0, 8.5, and 9.0 could reveal sensitive information from an error message that could lead to further attacks against the system. IBM X-Force ID: 124390.
Ibm Websphere Portal 8.5.0.0
Ibm Websphere Portal 7.0.0.0
Ibm Websphere Portal 8.0.0.0
Ibm Websphere Portal 9.0.0.0
5
CVSSv2
CVE-2017-1423
IBM WebSphere Portal 8.5 and 9.0 exposes backend server URLs that are configured for usage by the Web Application Bridge component. IBM X-Force ID: 127476.
Ibm Websphere Portal 8.5.0.0
Ibm Websphere Portal 9.0.0.0
5
CVSSv2
CVE-2017-1577
IBM WebSphere Portal 7.0, 8.0, 8.5, and 9.0 could allow a remote malicious user to traverse directories on the system. An attacker could send a specially-crafted URL request containing "dot dot" sequences (/../) to view arbitrary files on the system. IBM X-Force ID: 132...
Ibm Websphere Portal 7.0.0.1
Ibm Websphere Portal 8.5.0.0
Ibm Websphere Portal 8.0.0.1
Ibm Websphere Portal 7.0.0.0
Ibm Websphere Portal 8.0.0.0
Ibm Websphere Portal 7.0.0.2
Ibm Websphere Portal 9.0.0.0
4
CVSSv2
CVE-2016-5954
IBM WebSphere Portal 6.1.0 up to and including 6.1.0.6 CF27, 6.1.5 up to and including 6.1.5.3 CF27, 7.0.0 up to and including 7.0.0.2 CF30, 8.0.0 up to and including 8.0.0.1 CF21, and 8.5.0 before CF12 allows remote authenticated users to cause a denial of service by uploading t...
Ibm Websphere Portal 7.0.0.1
Ibm Websphere Portal 8.5.0.0
Ibm Websphere Portal 8.0.0.1
Ibm Websphere Portal 7.0.0.0
Ibm Websphere Portal 8.0.0.0
Ibm Websphere Portal 6.1.5.1
Ibm Websphere Portal 6.1.5.0
Ibm Websphere Portal 6.1.0.5
Ibm Websphere Portal 6.1.5.3
Ibm Websphere Portal 6.1.0.2
Ibm Websphere Portal 6.1.5.2
Ibm Websphere Portal 6.1.0.1
Ibm Websphere Portal 6.1.0.4
Ibm Websphere Portal 6.1.0.3
Ibm Websphere Portal 6.1.0.0
Ibm Websphere Portal 7.0.0.2
Ibm Websphere Portal 6.1.0.6
3.5
CVSSv2
CVE-2016-2925
Cross-site scripting (XSS) vulnerability in IBM WebSphere Portal 6.1.0.x up to and including 6.1.0.6 CF27, 6.1.5.x up to and including 6.1.5.3 CF27, 7.x up to and including 7.0.0.2 CF30, 8.0.0.x up to and including 8.0.0.1 CF21, and 8.5.0 before CF10 allows remote authenticated u...
Ibm Websphere Portal 7.0.0.1
Ibm Websphere Portal 8.5.0.0
Ibm Websphere Portal 8.0.0.1
Ibm Websphere Portal 7.0.0.0
Ibm Websphere Portal 8.0.0.0
Ibm Websphere Portal 6.1.5.1
Ibm Websphere Portal 6.1.5.0
Ibm Websphere Portal 6.1.0.5
Ibm Websphere Portal 6.1.5.3
Ibm Websphere Portal 6.1.0.2
Ibm Websphere Portal 6.1.5.2
Ibm Websphere Portal 6.1.0.1
Ibm Websphere Portal 6.1.0.4
Ibm Websphere Portal 6.1.0.3
Ibm Websphere Portal 6.1.0.0
Ibm Websphere Portal 7.0.0.2
Ibm Websphere Portal 6.1.0.6
6.8
CVSSv2
CVE-2016-2901
Cross-site request forgery (CSRF) vulnerability in the PA_Theme_Creator application in IBM WebSphere Portal 8.5 CF08 through CF10 and Web Content Manager allows remote malicious users to hijack the authentication of arbitrary users for requests that insert XSS sequences.
Ibm Websphere Portal 8.5.0.0
Ibm Web Content Manager
4.3
CVSSv2
CVE-2016-0243
Cross-site scripting (XSS) vulnerability in IBM WebSphere Portal 6.1.0.x up to and including 6.1.0.6 CF27, 6.1.5.x up to and including 6.1.5.3 CF27, 7.x up to and including 7.0.0.2 CF29, 8.0.x prior to 8.0.0.1 CF20, and 8.5.x prior to 8.5.0.0 CF09 allows remote malicious users to...
Ibm Websphere Portal 7.0.0.1
Ibm Websphere Portal 8.5.0.0
Ibm Websphere Portal 8.0.0.1
Ibm Websphere Portal 7.0.0.0
Ibm Websphere Portal 8.0.0.0
Ibm Websphere Portal 6.1.5.1
Ibm Websphere Portal 6.1.5.0
Ibm Websphere Portal 6.1.0.5
Ibm Websphere Portal 6.1.5.3
Ibm Websphere Portal 6.1.0.2
Ibm Websphere Portal 6.1.5.2
Ibm Websphere Portal 6.1.0.1
Ibm Websphere Portal 6.1.0.4
Ibm Websphere Portal 6.1.0.3
Ibm Websphere Portal 6.1.0.0
Ibm Websphere Portal 7.0.0.2
Ibm Websphere Portal 6.1.0.6
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
logic flaw
CVE-2024-23692
CVE-2024-26229
CVE-2024-35255
CVE-2024-5835
CVE-2024-5837
XML external entity
dos
CVE-2024-5813
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »