Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
websphere portal vulnerabilities and exploits
(subscribe to this query)
445
VMScore
CVE-2012-4834
Directory traversal vulnerability in LayerLoader.jsp in the theme component in IBM WebSphere Portal 7.0.0.1 and 7.0.0.2 before CF19 and 8.0 before CF03 allows remote malicious users to read arbitrary files via a crafted URI.
Ibm Websphere Portal 7.0.0.1
Ibm Websphere Portal 8.0.0.0
Ibm Websphere Portal 7.0.0.2
445
VMScore
CVE-2012-2181
Directory traversal vulnerability in the Dojo module in IBM WebSphere Portal 7.0.0.1 and 7.0.0.2 before CF14, and 8.0, allows remote malicious users to read arbitrary files via a crafted URL.
Ibm Websphere Portal 7.0.0.1
Ibm Websphere Portal 8.0
Ibm Websphere Portal 7.0.0.2
445
VMScore
CVE-2011-0679
IBM WebSphere Portal 6.0.1.1 up to and including 7.0.0.0, as used in IBM Lotus Web Content Management (WCM) and IBM Lotus Quickr for WebSphere Portal, allows remote malicious users to obtain sensitive information via a "modified message."
Ibm Websphere Portal 6.0.1.3
Ibm Websphere Portal 7.0.0.0
Ibm Websphere Portal 6.1.5.0
Ibm Websphere Portal 6.0.1.1
Ibm Websphere Portal 6.0.1.4
Ibm Websphere Portal 6.0.1.7
Ibm Websphere Portal 6.1.0.2
Ibm Websphere Portal 6.1.0.1
Ibm Websphere Portal 6.0.1.5
Ibm Websphere Portal 6.0.1.2
Ibm Websphere Portal 6.1.0.3
Ibm Websphere Portal 6.1.0.0
Ibm Websphere Portal 6.0.1.6
436
VMScore
CVE-2014-6193
IBM WebSphere Portal 8.0.0 up to and including 8.0.0.1 CF14 and 8.5.0 before CF04, when the Managed Pages setting is enabled, allows remote authenticated users to write to pages via an XML injection attack.
Ibm Websphere Portal 8.5.0.0
Ibm Websphere Portal 8.0.0.1
Ibm Websphere Portal 8.0.0.0
436
VMScore
CVE-2013-4012
IBM WebSphere Portal 8.0.0.x prior to 8.0.0.1 CF09, when Content Template Catalog 4.0 is used, does not require administrative privileges for Portal Application Archive (PAA) file installation, which allows remote authenticated users to modify data or cause a denial of service vi...
Ibm Websphere Portal 8.0.0.0
Ibm Websphere Portal 8.0.0.1
435
VMScore
CVE-2010-0714
Cross-site scripting (XSS) vulnerability in login.jsp in IBM WebSphere Portal, IBM Lotus Web Content Management (WCM), and IBM Lotus Workplace Web Content Management 5.1.0.0 up to and including 5.1.0.5, 6.0.0.0 up to and including 6.0.0.4, 6.0.1.0 up to and including 6.0.1.7, 6.1...
Ibm Websphere Portal 5.1.0.3
Ibm Websphere Portal 6.0.0.4
Ibm Websphere Portal 6.0.1.0
Ibm Websphere Portal 6.0.1.3
Ibm Websphere Portal 6.0.0.2
Ibm Websphere Portal 6.1.5.0
Ibm Websphere Portal 5.1.0.2
Ibm Websphere Portal 6.0.1.1
Ibm Websphere Portal 6.0.0.0
Ibm Websphere Portal 5.1.0.4
Ibm Websphere Portal 5.1.0.0
Ibm Websphere Portal 6.0.1.4
Ibm Websphere Portal 6.0.1.7
Ibm Websphere Portal 6.1.0.2
Ibm Websphere Portal 5.1.0.1
Ibm Websphere Portal 6.1.0.1
Ibm Websphere Portal 6.0.1.5
Ibm Websphere Portal 6.0.1.2
Ibm Websphere Portal 6.1.0.3
Ibm Websphere Portal 6.1.0.0
Ibm Websphere Portal 5.1.0.5
Ibm Websphere Portal 6.0.1.6
1 EDB exploit
392
VMScore
CVE-2009-1008
Unspecified vulnerability in the Outside In Technology component in Oracle Application Server 8.2.2 and 8.3.0 allows local users to affect confidentiality, integrity, and availability, related to HTML, a different vulnerability than CVE-2009-1010.
Ibm Websphere Portal 6.0.1.0
Ibm Websphere Portal 7.0.0.0
Ibm Websphere Portal 8.0.0.0
Ibm Websphere Portal 6.1.5.0
Ibm Websphere Portal 6.0.0.0
Ibm Websphere Portal 6.1.0.0
Oracle Application Server 8.2.2
Oracle Application Server 8.3.0
392
VMScore
CVE-2009-1009
Unspecified vulnerability in the Outside In Technology component in Oracle Application Server 8.1.9 allows local users to affect confidentiality, integrity, and availability, related to HTML.
Oracle Application Server 8.1.9
Ibm Websphere Portal 6.0.1.0
Ibm Websphere Portal 7.0.0.0
Ibm Websphere Portal 8.0.0.0
Ibm Websphere Portal 6.1.5.0
Ibm Websphere Portal 6.0.0.0
Ibm Websphere Portal 6.1.0.0
392
VMScore
CVE-2009-1010
Unspecified vulnerability in the Outside In Technology component in Oracle Application Server 8.2.2 and 8.3.0 allows local users to affect confidentiality, integrity, and availability, related to HTML, a different vulnerability than CVE-2009-1008.
Ibm Websphere Portal 6.0.1.0
Ibm Websphere Portal 7.0.0.0
Ibm Websphere Portal 8.0.0.0
Ibm Websphere Portal 6.1.5.0
Ibm Websphere Portal 6.0.0.0
Ibm Websphere Portal 6.1.0.0
Oracle Application Server 8.2.2
Oracle Application Server 8.3.0
383
VMScore
CVE-2018-1673
IBM WebSphere Portal 7.0, 8.0, 8.5, and 9.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM...
Ibm Websphere Portal 8.5.0.0
Ibm Websphere Portal 8.0.0.1
Ibm Websphere Portal 7.0.0.1
Ibm Websphere Portal 7.0.0.0
Ibm Websphere Portal 7.0.0.2
Ibm Websphere Portal 8.0.0.0
Ibm Websphere Portal 9.0.0.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »