Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
appscan vulnerabilities and exploits
(subscribe to this query)
5.3
CVSSv3
CVE-2016-3035
IBM AppScan Source could reveal some sensitive information through the browsing of testlinks on the server.
Ibm Security Appscan Source 9.0.3
Ibm Security Appscan Source 9.0.2
Ibm Security Appscan Source 9.0.1
NA
CVE-2013-0473
Multiple cross-site scripting (XSS) vulnerabilities in IBM Security AppScan Enterprise 5.6 and 8.x prior to 8.7 and IBM Rational Policy Tester 5.6 and 8.x prior to 8.5.0.4 allow remote malicious users to inject arbitrary web script or HTML via a crafted report.
Ibm Security Appscan 8.0.1.0
Ibm Security Appscan 8.0.1.1
Ibm Security Appscan 8.0.0.1
Ibm Security Appscan 8.0.0.2
Ibm Security Appscan 8.6.0.1
Ibm Security Appscan 8.6.0.2
Ibm Security Appscan 5.6.0.0
Ibm Security Appscan 8.0.0.0
Ibm Security Appscan 8.5.0.1
Ibm Security Appscan 8.6.0.0
Ibm Security Appscan 8.0.11
Ibm Security Appscan 8.5.0.0
Ibm Rational Policy Tester 5.6.0.0
Ibm Rational Policy Tester 8.5.0.3
Ibm Rational Policy Tester 8.5.0.2
Ibm Rational Policy Tester 8.5.0.1
Ibm Rational Policy Tester 8.0.0.1
Ibm Rational Policy Tester 8.0.0.0
Ibm Rational Policy Tester 8.0.1.0
Ibm Rational Policy Tester 8.0.0.2
Ibm Rational Policy Tester 8.5.0.0
Ibm Rational Policy Tester 8.0.1.1
NA
CVE-2013-0513
IBM Security AppScan Enterprise 5.6 and 8.x prior to 8.7 and IBM Rational Policy Tester 5.6 and 8.x prior to 8.5.0.4 create a service that lacks " (double quote) characters in the service path, which allows local users to gain privileges via a Trojan horse program, related t...
Ibm Security Appscan 8.0.11
Ibm Security Appscan 8.5.0.0
Ibm Security Appscan 8.5.0.1
Ibm Security Appscan 8.0.1.0
Ibm Security Appscan 8.0.1.1
Ibm Security Appscan 8.0.0.1
Ibm Security Appscan 8.0.0.2
Ibm Security Appscan 8.6.0.2
Ibm Security Appscan 5.6.0.0
Ibm Security Appscan 8.0.0.0
Ibm Security Appscan 8.6.0.0
Ibm Security Appscan 8.6.0.1
Ibm Rational Policy Tester 8.5.0.0
Ibm Rational Policy Tester 8.0.1.1
Ibm Rational Policy Tester 5.6.0.0
Ibm Rational Policy Tester 8.5.0.3
Ibm Rational Policy Tester 8.5.0.2
Ibm Rational Policy Tester 8.0.0.1
Ibm Rational Policy Tester 8.0.0.0
Ibm Rational Policy Tester 8.5.0.1
Ibm Rational Policy Tester 8.0.1.0
Ibm Rational Policy Tester 8.0.0.2
NA
CVE-2013-0474
The Manual Explore browser plug-in in IBM Security AppScan Enterprise 5.6 and 8.x prior to 8.7 and IBM Rational Policy Tester 5.6 and 8.x prior to 8.5.0.4 allows remote malicious users to discover test Platform Authentication credentials via a crafted web site.
Ibm Security Appscan 8.0.1.1
Ibm Security Appscan 8.0.11
Ibm Security Appscan 8.0.0.2
Ibm Security Appscan 8.0.1.0
Ibm Security Appscan 8.6.0.2
Ibm Security Appscan 8.0.0.0
Ibm Security Appscan 8.0.0.1
Ibm Security Appscan 8.6.0.0
Ibm Security Appscan 8.6.0.1
Ibm Security Appscan 5.6.0.0
Ibm Security Appscan 8.5.0.0
Ibm Security Appscan 8.5.0.1
Ibm Rational Policy Tester 8.5.0.3
Ibm Rational Policy Tester 8.5.0.0
Ibm Rational Policy Tester 8.5.0.1
Ibm Rational Policy Tester 5.6.0.0
Ibm Rational Policy Tester 8.0.0.0
Ibm Rational Policy Tester 8.5.0.2
Ibm Rational Policy Tester 8.0.0.2
Ibm Rational Policy Tester 8.0.0.1
Ibm Rational Policy Tester 8.0.1.1
Ibm Rational Policy Tester 8.0.1.0
NA
CVE-2013-0512
Stack-based buffer overflow in the Manual Explore browser plug-in for Firefox in IBM Security AppScan Enterprise 5.6 and 8.x prior to 8.7 and IBM Rational Policy Tester 5.6 and 8.x prior to 8.5.0.4 allows remote malicious users to cause a denial of service (plug-in crash) via a c...
Ibm Security Appscan 8.0.1.1
Ibm Security Appscan 8.0.11
Ibm Security Appscan 8.0.0.2
Ibm Security Appscan 8.0.1.0
Ibm Security Appscan 8.0.0.0
Ibm Security Appscan 8.0.0.1
Ibm Security Appscan 8.6.0.1
Ibm Security Appscan 8.6.0.2
Ibm Security Appscan 5.6.0.0
Ibm Security Appscan 8.5.0.0
Ibm Security Appscan 8.5.0.1
Ibm Security Appscan 8.6.0.0
Ibm Rational Policy Tester 8.5.0.3
Ibm Rational Policy Tester 8.5.0.0
Ibm Rational Policy Tester 8.5.0.1
Ibm Rational Policy Tester 5.6.0.0
Ibm Rational Policy Tester 8.0.0.0
Ibm Rational Policy Tester 8.5.0.2
Ibm Rational Policy Tester 8.0.0.2
Ibm Rational Policy Tester 8.0.0.1
Ibm Rational Policy Tester 8.0.1.1
Ibm Rational Policy Tester 8.0.1.0
NA
CVE-2013-0532
Cross-site request forgery (CSRF) vulnerability in IBM Security AppScan Enterprise 5.6 and 8.x prior to 8.7 and IBM Rational Policy Tester 5.6 and 8.x prior to 8.5.0.4 allows remote malicious users to hijack the authentication of arbitrary users for requests that cause a denial o...
Ibm Security Appscan 5.6.0.0
Ibm Security Appscan 8.5.0.1
Ibm Security Appscan 8.6.0.0
Ibm Security Appscan 8.0.0.2
Ibm Security Appscan 8.0.1.0
Ibm Security Appscan 8.0.1.1
Ibm Security Appscan 8.0.11
Ibm Security Appscan 8.5.0.0
Ibm Security Appscan 8.0.0.0
Ibm Security Appscan 8.0.0.1
Ibm Security Appscan 8.6.0.1
Ibm Security Appscan 8.6.0.2
Ibm Rational Policy Tester 8.0.1.1
Ibm Rational Policy Tester 8.0.1.0
Ibm Rational Policy Tester 5.6.0.0
Ibm Rational Policy Tester 8.0.0.0
Ibm Rational Policy Tester 8.5.0.2
Ibm Rational Policy Tester 8.5.0.3
Ibm Rational Policy Tester 8.5.0.0
Ibm Rational Policy Tester 8.5.0.1
Ibm Rational Policy Tester 8.0.0.2
Ibm Rational Policy Tester 8.0.0.1
NA
CVE-2005-4270
Buffer overflow in Watchfire AppScan QA 5.0.609 and 5.0.134 allows remote web servers to execute arbitrary code via an HTTP 401 response with a WWW-Authenticate header containing a long Realm field.
Watchfire Appscan Qa 5.0.134
Watchfire Appscan Qa 5.0.609
1 EDB exploit
6.1
CVSSv3
CVE-2019-4324
"HCL AppScan Enterprise is susceptible to Cross-Site Scripting while importing a specially crafted test policy."
Hcltech Appscan
4.3
CVSSv3
CVE-2019-4323
"HCL AppScan Enterprise advisory API documentation is susceptible to clickjacking, which could allow an malicious user to embed the contents of untrusted web pages in a frame."
Hcltech Appscan
5.3
CVSSv3
CVE-2019-4325
"HCL AppScan Enterprise makes use of broken or risky cryptographic algorithm to store REST API user details."
Hcltech Appscan
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »