Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sterling b2b integrator vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2020-4700
IBM Sterling B2B Integrator Standard Edition 6.0.0.0 up to and including 6.0.3.2 and 5.2.0.0 up to and including 5.2.6.5 could allow an authenticated user belonging to a specific user group to create a user or group with administrative privileges. IBM X-Force ID: 187077.
Ibm Sterling B2b Integrator
5.4
CVSSv3
CVE-2018-1513
IBM Sterling B2B Integrator Standard Edition 5.2.0 up to and including 5.2.6 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclos...
Ibm Sterling B2b Integrator
1 EDB exploit
6.5
CVSSv3
CVE-2022-22482
IBM Sterling B2B Integrator Standard Edition 6.0.0.0 up to and including 6.0.3.5 and 6.1.0.0 up to and including 6.1.1.0 could allow an authenticated user to upload files that could fill up the filesystem and cause a denial of service. IBM X-Force ID: 225977.
Ibm Sterling B2b Integrator
4.3
CVSSv3
CVE-2023-42016
IBM Sterling B2B Integrator Standard Edition 6.0.0.0 up to and including 6.0.3.8 and 6.1.0.0 up to and including 6.1.2.3 does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to get the cookie values by sending a http:// link to a use...
Ibm Sterling B2b Integrator
6.5
CVSSv3
CVE-2023-22876
IBM Sterling B2B Integrator Standard Edition 6.0.0.0 up to and including 6.0.3.7 and 6.1.0.0 up to and including 6.1.2.1 could allow a privileged user to obtain sensitive information that could aid in further attacks against the system. IBM X-Force ID: 244364.
Ibm Sterling B2b Integrator
4.3
CVSSv3
CVE-2017-1633
IBM Sterling B2B Integrator 5.2 up to and including 5.2.6 could allow an authenticated malicious user to obtain sensitive variable name information using specially crafted HTTP requests. IBM X-Force ID: 133180.
Ibm Sterling B2b Integrator
6.1
CVSSv3
CVE-2019-4595
IBM Sterling B2B Integrator Standard Edition 5.2.0.0 up to and including 5.2.6.5 could allow a remote malicious user to conduct phishing attacks, using an open redirect attack. By persuading a victim to visit a specially-crafted Web site, a remote attacker could exploit this vuln...
Ibm Sterling B2b Integrator
8.8
CVSSv3
CVE-2019-4680
IBM Sterling B2B Integrator Standard Edition 5.2.0.0 up to and including 6.0.2.2 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the malicious user to view, add, modify or delete information in the back-end database...
Ibm Sterling B2b Integrator
5.4
CVSSv3
CVE-2019-4027
IBM Sterling B2B Integrator 5.2.0.1 up to and including 6.0.0.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a ...
Ibm Sterling B2b Integrator
5.9
CVSSv3
CVE-2019-4063
IBM Sterling B2B Integrator 5.2.0.1 up to and including 6.0.0.0 Standard Edition could allow highly sensitive information to be transmitted in plain text. An attacker could obtain this information using man in the middle techniques. IBM X-ForceID: 157008.
Ibm Sterling B2b Integrator
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
HTML injection
CVE-2024-35894
SQL
CVE-2024-5105
CVE-2014-100005
CVE-2024-35895
unauthorized
CVE-2024-22120
CVE-2024-35890
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »