Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm websphere portal 7.0.0.1 vulnerabilities and exploits
(subscribe to this query)
6.3
CVSSv3
CVE-2018-1672
IBM WebSphere Portal 7.0, 8.0, 8.5, and 9.0 may fail to set the correct user context in certain impersonation scenarios, which can allow a user to act with the identity of a different user. IBM X-Force ID: 144958.
Ibm Websphere Portal 7.0.0.1
Ibm Websphere Portal 7.0.0.2
Ibm Websphere Portal 8.0.0.1
Ibm Websphere Portal 8.5.0.0
Ibm Websphere Portal 9.0.0.0
Ibm Websphere Portal 7.0.0.0
Ibm Websphere Portal 8.0.0.0
NA
CVE-2014-3054
Multiple open redirect vulnerabilities in the Unified Task List (UTL) Portlet for IBM WebSphere Portal 7.x and 8.x up to and including 8.0.0.1 CF12 allow remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.
Ibm Websphere Portal 8.0.0.0
Ibm Websphere Portal 8.0.0.1
Ibm Websphere Portal 7.0.0.1
Ibm Websphere Portal 7.0.0.2
Ibm Websphere Portal Unified Task List Portlet 6.0.1
Ibm Websphere Portal 7.0.0.0
NA
CVE-2014-3055
SQL injection vulnerability in the Unified Task List (UTL) Portlet for IBM WebSphere Portal 7.x and 8.x up to and including 8.0.0.1 CF12 allows remote malicious users to execute arbitrary SQL commands via unspecified vectors.
Ibm Websphere Portal Unified Task List Portlet 6.0.1
Ibm Websphere Portal 8.0.0.1
Ibm Websphere Portal 7.0.0.1
Ibm Websphere Portal 7.0.0.2
Ibm Websphere Portal 8.0.0.0
Ibm Websphere Portal 7.0.0.0
NA
CVE-2014-3056
The Unified Task List (UTL) Portlet for IBM WebSphere Portal 7.x and 8.x up to and including 8.0.0.1 CF12 allows remote malicious users to obtain potentially sensitive information about environment variables and JAR versions via unspecified vectors.
Ibm Websphere Portal 8.0.0.0
Ibm Websphere Portal 8.0.0.1
Ibm Websphere Portal 7.0.0.1
Ibm Websphere Portal 7.0.0.2
Ibm Websphere Portal Unified Task List Portlet 6.0.1
Ibm Websphere Portal 7.0.0.0
NA
CVE-2014-3057
Cross-site scripting (XSS) vulnerability in the Unified Task List (UTL) Portlet for IBM WebSphere Portal 7.x and 8.x up to and including 8.0.0.1 CF12 allows remote malicious users to inject arbitrary web script or HTML via a crafted URL.
Ibm Websphere Portal 8.0.0.1
Ibm Websphere Portal 8.0.0.0
Ibm Websphere Portal 7.0.0.1
Ibm Websphere Portal 7.0.0.2
Ibm Websphere Portal 7.0.0.0
Ibm Websphere Portal Unified Task List Portlet 6.0.1
NA
CVE-2013-2950
CRLF injection vulnerability in IBM WebSphere Portal 6.1.0.x prior to 6.1.0.3 CF26, 6.1.5.x prior to 6.1.5 CF26, 7.0.0.x prior to 7.0.0.2 CF21, and 8.0.0.x up to and including 8.0.0.1 CF5, when home substitution (aka uri.home.substitution) is enabled, allows remote authenticated ...
Ibm Websphere Portal 8.0.0.0
Ibm Websphere Portal 8.0
Ibm Websphere Portal 8.0.0.1
Ibm Websphere Portal 7.0.0.2
Ibm Websphere Portal 7.0.0.1
Ibm Websphere Portal 7.0.0.0
Ibm Websphere Portal 6.1.0.3
Ibm Websphere Portal 6.1.5.0
Ibm Websphere Portal 6.1.0.0
Ibm Websphere Portal 6.1.0.1
Ibm Websphere Portal 6.1.0.2
NA
CVE-2011-2754
Cross-site scripting (XSS) vulnerability in the PageBuilder2 (aka Page Builder) theme in IBM WebSphere Portal 7.x prior to 7.0.0.1 CF006, as used in IBM Web Content Manager (WCM) and other products, allows remote malicious users to inject arbitrary web script or HTML via unspecif...
Ibm Websphere Portal 7.0.0.1
Ibm Web Content Manager
Ibm Websphere Portal 7.0.0.0
NA
CVE-2014-6215
Cross-site scripting (XSS) vulnerability in IBM WebSphere Portal 6.1.0 up to and including 6.1.0.6 CF27, 6.1.5 up to and including 6.1.5.3 CF27, 7.0.0 prior to 7.0.0.2 CF29, 8.0.0 up to and including 8.0.0.1 CF14, and 8.5.0 before CF03 allows remote authenticated users to inject ...
Ibm Websphere Portal 6.1.0.2
Ibm Websphere Portal 6.1.0.3
Ibm Websphere Portal 7.0.0
Ibm Websphere Portal 8.0.0
Ibm Websphere Portal 6.1.0.6
Ibm Websphere Portal 8.5.0
Ibm Websphere Portal 6.1.0
Ibm Websphere Portal 6.1.0.1
Ibm Websphere Portal 7.0.0.2
Ibm Websphere Portal 7.0.0.1
Ibm Websphere Portal 6.1.0.4
Ibm Websphere Portal 6.1.0.5
Ibm Websphere Portal 8.0.0.1
NA
CVE-2014-8909
Cross-site scripting (XSS) vulnerability in IBM WebSphere Portal 6.1.0.x up to and including 6.1.0.6 CF27, 6.1.5.x up to and including 6.1.5.3 CF27, 7.0.0.x up to and including 7.0.0.2 CF29, 8.0.0.x prior to 8.0.0.1 CF15, and 8.5.0 before CF05 allows remote authenticated users to...
Ibm Websphere Portal 6.1.0.4
Ibm Websphere Portal 6.1.0.5
Ibm Websphere Portal 7.0.0.1
Ibm Websphere Portal 8.0.0.0
Ibm Websphere Portal 6.1.0.0
Ibm Websphere Portal 6.1.0.1
Ibm Websphere Portal 6.1.5.1
Ibm Websphere Portal 6.1.5.2
Ibm Websphere Portal 6.1.0.2
Ibm Websphere Portal 6.1.0.3
Ibm Websphere Portal 6.1.5.3
Ibm Websphere Portal 7.0.0.0
Ibm Websphere Portal 6.1.0.6
Ibm Websphere Portal 6.1.5.0
NA
CVE-2014-0910
Cross-site scripting (XSS) vulnerability in IBM WebSphere Portal 6.1.0.0 up to and including 6.1.0.6 CF27, 6.1.5.0 up to and including 6.1.5.3 CF27, and 7.0.0 up to and including 7.0.0.2 CF28 allows remote authenticated users to inject arbitrary web script or HTML via unspecified...
Ibm Websphere Portal 7.0.0.0
Ibm Websphere Portal 7.0.0.1
Ibm Websphere Portal 7.0.0.2
Ibm Websphere Portal 6.1.5.0
Ibm Websphere Portal 6.1.5.1
Ibm Websphere Portal 6.1.5.2
Ibm Websphere Portal 6.1.5.3
Ibm Websphere Portal 6.1.0.0
Ibm Websphere Portal 6.1.0.1
Ibm Websphere Portal 6.1.0.3
Ibm Websphere Portal 6.1.0.2
Ibm Websphere Portal 6.1.0.4
Ibm Websphere Portal 6.1.0.5
Ibm Websphere Portal 6.1.0.6
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »