Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm websphere application server 7.0.0.7 vulnerabilities and exploits
(subscribe to this query)
570
VMScore
CVE-2009-2749
Feature Pack for Communications Enabled Applications (CEA) prior to 1.0.0.1 for IBM WebSphere Application Server 7.0.0.7 uses predictable session values, which allows man-in-the-middle malicious users to spoof a collaboration session by guessing the value.
Ibm Websphere Application Server 7.0.0.7
Ibm Communications Enabled Applications
534
VMScore
CVE-2014-4816
Cross-site request forgery (CSRF) vulnerability in the Administrative Console in IBM WebSphere Application Server (WAS) 6.x up to and including 6.1.0.47, 7.0 prior to 7.0.0.35, 8.0 prior to 8.0.0.10, and 8.5 prior to 8.5.5.4 allows remote authenticated users to hijack the authent...
Ibm Websphere Application Server 6.1.0.21
Ibm Websphere Application Server 6.1.0.31
Ibm Websphere Application Server 7.0.0.14
Ibm Websphere Application Server 8.5.0.2
Ibm Websphere Application Server 6.1
Ibm Websphere Application Server 7.0.0.12
Ibm Websphere Application Server 7.0.0.2
Ibm Websphere Application Server 7.0.0.31
Ibm Websphere Application Server 6.1.0.19
Ibm Websphere Application Server 7.0.0.24
Ibm Websphere Application Server 6.1.0.47
Ibm Websphere Application Server 7.0.0.25
Ibm Websphere Application Server 7.0.0.33
Ibm Websphere Application Server 7.0.0.5
Ibm Websphere Application Server 7.0.0.18
Ibm Websphere Application Server 8.0.0.5
Ibm Websphere Application Server 7.0.0.15
Ibm Websphere Application Server 6.0.2.1
Ibm Websphere Application Server 6.0.2.5
Ibm Websphere Application Server 6.0.0.3
Ibm Websphere Application Server 6.1.0.2
Ibm Websphere Application Server 7.0.0.23
534
VMScore
CVE-2012-3325
IBM WebSphere Application Server (WAS) 6.1.x prior to 6.1.0.45, 7.0.x prior to 7.0.0.25, 8.0.x prior to 8.0.0.5, and 8.5.x Full Profile prior to 8.5.0.1, when the PM44303 fix is installed, does not properly validate credentials, which allows remote authenticated users to obtain a...
Ibm Websphere Application Server 6.1.0.21
Ibm Websphere Application Server 6.1.0.31
Ibm Websphere Application Server 6.1.7
Ibm Websphere Application Server 6.1
Ibm Websphere Application Server 6.1.0.19
Ibm Websphere Application Server 6.1.6
Ibm Websphere Application Server 6.1.0.2
Ibm Websphere Application Server 6.1.0.33
Ibm Websphere Application Server 6.1.0.25
Ibm Websphere Application Server 6.1.14
Ibm Websphere Application Server 6.1.0.11
Ibm Websphere Application Server 6.1.0.41
Ibm Websphere Application Server 6.1.0.39
Ibm Websphere Application Server 6.1.0.43
Ibm Websphere Application Server 6.1.0.9
Ibm Websphere Application Server 6.1.0.0
Ibm Websphere Application Server 6.1.0.1
Ibm Websphere Application Server 6.1.5
Ibm Websphere Application Server 6.1.0.27
Ibm Websphere Application Server 6.1.0.29
Ibm Websphere Application Server 6.1.13
Ibm Websphere Application Server 6.1.0.7
534
VMScore
CVE-2011-1311
The Security component in IBM WebSphere Application Server (WAS) prior to 7.0.0.15, when a J2EE 1.4 application is used, determines the security role mapping on the basis of the ibm-application-bnd.xml file instead of the intended ibm-application-bnd.xmi file, which might allow r...
Ibm Websphere Application Server 5.0.0
Ibm Websphere Application Server 6.1.0.21
Ibm Websphere Application Server 6.1.0.31
Ibm Websphere Application Server 3.0.21
Ibm Websphere Application Server 6.1.7
Ibm Websphere Application Server 5.1.0.5
Ibm Websphere Application Server 6.1
Ibm Websphere Application Server 7.0.0.2
Ibm Websphere Application Server 5.0.2.10
Ibm Websphere Application Server 5.1.1.14
Ibm Websphere Application Server 5.0.2.5
Ibm Websphere Application Server 5.0.2.1
Ibm Websphere Application Server 6.1.0.19
Ibm Websphere Application Server 5.1.1.2
Ibm Websphere Application Server 6.1.6
Ibm Websphere Application Server 3.0.2.1
Ibm Websphere Application Server 7.0.0.5
Ibm Websphere Application Server 5.0
Ibm Websphere Application Server 6.0.2.1
Ibm Websphere Application Server 6.0.2.5
Ibm Websphere Application Server 6.0.0.3
Ibm Websphere Application Server 6.1.0.2
534
VMScore
CVE-2010-0785
Cross-site request forgery (CSRF) vulnerability in the Administrative Console in IBM WebSphere Application Server (WAS) 6.1 prior to 6.1.0.35 and 7.0 prior to 7.0.0.13 allows remote malicious users to hijack the authentication of unspecified victims via unknown vectors.
Ibm Websphere Application Server 6.1.0.21
Ibm Websphere Application Server 6.1.0.31
Ibm Websphere Application Server 6.1
Ibm Websphere Application Server 6.1.0.19
Ibm Websphere Application Server 6.1.0.2
Ibm Websphere Application Server 6.1.0.33
Ibm Websphere Application Server 6.1.0.25
Ibm Websphere Application Server 6.1.0.11
Ibm Websphere Application Server 6.1.0.9
Ibm Websphere Application Server 6.1.0.0
Ibm Websphere Application Server 6.1.0.1
Ibm Websphere Application Server 6.1.0.27
Ibm Websphere Application Server 6.1.0.29
Ibm Websphere Application Server 6.1.0.7
Ibm Websphere Application Server 6.1.0.3
Ibm Websphere Application Server 6.1.0.17
Ibm Websphere Application Server 6.1.0.15
Ibm Websphere Application Server 6.1.0.23
Ibm Websphere Application Server 6.1.0
Ibm Websphere Application Server 6.1.0.5
Ibm Websphere Application Server 6.1.0.12
Ibm Websphere Application Server 7.0.0.2
516
VMScore
CVE-2011-1355
Open redirect vulnerability in IBM WebSphere Application Server (WAS) 6.1 prior to 6.1.0.39 and 7.0 prior to 7.0.0.19 allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via the logoutExitPage parameter.
Ibm Websphere Application Server 6.1.0.21
Ibm Websphere Application Server 6.1.0.31
Ibm Websphere Application Server 6.1.7
Ibm Websphere Application Server 6.1
Ibm Websphere Application Server 6.1.0.19
Ibm Websphere Application Server 6.1.6
Ibm Websphere Application Server 6.1.0.2
Ibm Websphere Application Server 6.1.0.33
Ibm Websphere Application Server 6.1.0.25
Ibm Websphere Application Server 6.1.14
Ibm Websphere Application Server 6.1.0.11
Ibm Websphere Application Server 6.1.0.9
Ibm Websphere Application Server 6.1.0.0
Ibm Websphere Application Server 6.1.0.1
Ibm Websphere Application Server 6.1.5
Ibm Websphere Application Server 6.1.0.27
Ibm Websphere Application Server 6.1.0.29
Ibm Websphere Application Server 6.1.13
Ibm Websphere Application Server 6.1.0.7
Ibm Websphere Application Server 6.1.1
Ibm Websphere Application Server 6.1.0.3
Ibm Websphere Application Server 6.1.0.17
445
VMScore
CVE-2016-5986
IBM WebSphere Application Server (WAS) 7.x prior to 7.0.0.43, 8.0.x prior to 8.0.0.13, 8.5.x prior to 8.5.5.11, 9.0.x prior to 9.0.0.2, and Liberty prior to 16.0.0.3 mishandles responses, which allows remote malicious users to obtain sensitive information via unspecified vectors.
Ibm Websphere Application Server 7.0.0.14
Ibm Websphere Application Server 8.5.5.6
Ibm Websphere Application Server 7.0.0.12
Ibm Websphere Application Server 7.0.0.2
Ibm Websphere Application Server 8.5.5.1
Ibm Websphere Application Server 7.0.0.37
Ibm Websphere Application Server 7.0.0.31
Ibm Websphere Application Server 7.0.0.24
Ibm Websphere Application Server 7.0.0.25
Ibm Websphere Application Server 7.0.0.33
Ibm Websphere Application Server 7.0.0.5
Ibm Websphere Application Server 7.0.0.18
Ibm Websphere Application Server 8.0.0.5
Ibm Websphere Application Server 7.0.0.15
Ibm Websphere Application Server 8.0.0.11
Ibm Websphere Application Server 8.5.5.8
Ibm Websphere Application Server 7.0.0.23
Ibm Websphere Application Server 7.0.0.38
Ibm Websphere Application Server 8.0.0.7
Ibm Websphere Application Server 7.0.0.9
Ibm Websphere Application Server 7.0.0.4
Ibm Websphere Application Server 7.0.0.11
445
VMScore
CVE-2015-4938
IBM WebSphere Application Server 7.x prior to 7.0.0.39, 8.0.x prior to 8.0.0.11, and 8.5.x prior to 8.5.5.7 allows remote malicious users to spoof servlets and obtain sensitive information via unspecified vectors.
Ibm Websphere Application Server 7.0.0.14
Ibm Websphere Application Server 8.5.5.6
Ibm Websphere Application Server 8.5.0.2
Ibm Websphere Application Server 7.0.0.12
Ibm Websphere Application Server 7.0.0.2
Ibm Websphere Application Server 7.0.0.37
Ibm Websphere Application Server 7.0.0.31
Ibm Websphere Application Server 7.0.0.24
Ibm Websphere Application Server 7.0.0.25
Ibm Websphere Application Server 7.0.0.33
Ibm Websphere Application Server 7.0.0.5
Ibm Websphere Application Server 7.0.0.18
Ibm Websphere Application Server 8.0.0.5
Ibm Websphere Application Server 7.0.0.15
Ibm Websphere Application Server 8.5.5.1
Ibm Websphere Application Server 7.0.0.23
Ibm Websphere Application Server 7.0.0.38
Ibm Websphere Application Server 8.0.0.7
Ibm Websphere Application Server 7.0.0.9
Ibm Websphere Application Server 7.0.0.4
Ibm Websphere Application Server 8.5.5.0
Ibm Websphere Application Server 7.0.0.11
445
VMScore
CVE-2015-1932
IBM WebSphere Application Server 7.x prior to 7.0.0.39, 8.0.x prior to 8.0.0.11, and 8.5.x prior to 8.5.5.7 and WebSphere Virtual Enterprise prior to 7.0.0.7 allow remote malicious users to obtain potentially sensitive information about the proxy-server software by reading the HT...
Ibm Websphere Virtual Enterprise
Ibm Websphere Application Server 7.0.0.14
Ibm Websphere Application Server 8.5.5.6
Ibm Websphere Application Server 8.5.0.2
Ibm Websphere Application Server 7.0.0.12
Ibm Websphere Application Server 7.0.0.2
Ibm Websphere Application Server 7.0.0.37
Ibm Websphere Application Server 7.0.0.31
Ibm Websphere Application Server 7.0.0.24
Ibm Websphere Application Server 7.0.0.25
Ibm Websphere Application Server 7.0.0.33
Ibm Websphere Application Server 7.0.0.5
Ibm Websphere Application Server 7.0.0.18
Ibm Websphere Application Server 8.0.0.5
Ibm Websphere Application Server 7.0.0.15
Ibm Websphere Application Server 8.5.5.1
Ibm Websphere Application Server 7.0.0.23
Ibm Websphere Application Server 7.0.0.38
Ibm Websphere Application Server 8.0.0.7
Ibm Websphere Application Server 7.0.0.9
Ibm Websphere Application Server 7.0.0.4
Ibm Websphere Application Server 8.5.5.0
445
VMScore
CVE-2014-3021
IBM WebSphere Application Server (WAS) 7.0 prior to 7.0.0.35, 8.0 prior to 8.0.0.10, and 8.5 prior to 8.5.5.4 does not properly handle HTTP headers, which allows remote malicious users to obtain sensitive cookie and authentication data via an unspecified HTTP method.
Ibm Websphere Application Server 7.0.0.14
Ibm Websphere Application Server 8.5.0.2
Ibm Websphere Application Server 7.0.0.12
Ibm Websphere Application Server 7.0.0.2
Ibm Websphere Application Server 8.5.5.1
Ibm Websphere Application Server 7.0.0.31
Ibm Websphere Application Server 7.0.0.24
Ibm Websphere Application Server 7.0.0.25
Ibm Websphere Application Server 7.0.0.33
Ibm Websphere Application Server 7.0.0.5
Ibm Websphere Application Server 7.0.0.18
Ibm Websphere Application Server 8.0.0.5
Ibm Websphere Application Server 7.0.0.15
Ibm Websphere Application Server 7.0.0.23
Ibm Websphere Application Server 8.0.0.7
Ibm Websphere Application Server 7.0.0.9
Ibm Websphere Application Server 8.5.5.3
Ibm Websphere Application Server 7.0.0.4
Ibm Websphere Application Server 8.5.5.0
Ibm Websphere Application Server 7.0.0.11
Ibm Websphere Application Server 7.0.0.32
Ibm Websphere Application Server 8.0.0.1
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »