Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
websphere portal vulnerabilities and exploits
(subscribe to this query)
3.5
CVSSv2
CVE-2017-1536
IBM Support Tools for Lotus WCM (IBM WebSphere Portal 7.0, 8.0, 8.5 and 9.0) is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclos...
Ibm Websphere Portal 7.0
Ibm Websphere Portal 9.0
Ibm Websphere Portal 8.5
Ibm Websphere Portal 8.0
4.3
CVSSv2
CVE-2017-1303
IBM WebSphere Portal and Web Content Manager 7.0, 8.0, 8.5, and 9.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure withi...
Ibm Websphere Portal 7.0
Ibm Websphere Portal 9.0
Ibm Websphere Portal 8.5
Ibm Websphere Portal 8.0
3.5
CVSSv2
CVE-2014-3102
Cross-site scripting (XSS) vulnerability in IBM WebSphere Portal 7.0.0 up to and including 7.0.0.2 CF28 and 8.0.0 prior to 8.0.0.1 CF13 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL.
Ibm Websphere Portal 7.0.0.1
Ibm Websphere Portal 7.0.0.0
Ibm Websphere Portal 8.0.0.0
Ibm Websphere Portal 7.0.0.2
5
CVSSv2
CVE-2013-3016
IBM WebSphere Portal 6.1, 7.0, and 8.0 allows remote malicious users to access the user directory via a crafted request for a servlet, related to the serveServletsByClassnameEnabled setting.
Ibm Websphere Portal 7.0.0.0
Ibm Websphere Portal 8.0.0.0
Ibm Websphere Portal 8.0
Ibm Websphere Portal 6.1.0.0
7.5
CVSSv2
CVE-2010-1348
Unspecified vulnerability in the login process in IBM WebSphere Portal 6.0.1.1, and 6.1.0.x prior to 6.1.0.3 Cumulative Fix 03, has unknown impact and remote attack vectors.
Ibm Websphere Portal 6.0.1.1
Ibm Websphere Portal 6.1.0.2
Ibm Websphere Portal 6.1.0.1
Ibm Websphere Portal 6.1.0.0
3.5
CVSSv2
CVE-2014-4762
Cross-site scripting (XSS) vulnerability in IBM WebSphere Portal 8.0.0 up to and including 8.0.0.1 CF13 and 8.5.0 before CF02 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL.
Ibm Websphere Portal 8.5.0.0
Ibm Websphere Portal 8.0.0.1
Ibm Websphere Portal 8.0.0.0
Ibm Websphere Portal 8.0
4.4
CVSSv2
CVE-2009-1008
Unspecified vulnerability in the Outside In Technology component in Oracle Application Server 8.2.2 and 8.3.0 allows local users to affect confidentiality, integrity, and availability, related to HTML, a different vulnerability than CVE-2009-1010.
Ibm Websphere Portal 6.0.1.0
Ibm Websphere Portal 7.0.0.0
Ibm Websphere Portal 8.0.0.0
Ibm Websphere Portal 6.1.5.0
Ibm Websphere Portal 6.0.0.0
Ibm Websphere Portal 6.1.0.0
Oracle Application Server 8.2.2
Oracle Application Server 8.3.0
4.4
CVSSv2
CVE-2009-1010
Unspecified vulnerability in the Outside In Technology component in Oracle Application Server 8.2.2 and 8.3.0 allows local users to affect confidentiality, integrity, and availability, related to HTML, a different vulnerability than CVE-2009-1008.
Ibm Websphere Portal 6.0.1.0
Ibm Websphere Portal 7.0.0.0
Ibm Websphere Portal 8.0.0.0
Ibm Websphere Portal 6.1.5.0
Ibm Websphere Portal 6.0.0.0
Ibm Websphere Portal 6.1.0.0
Oracle Application Server 8.2.2
Oracle Application Server 8.3.0
3.5
CVSSv2
CVE-2018-1445
IBM WebSphere Portal 8.0.0 up to and including 8.0.0.1, 8.5, and 9.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure with...
Ibm Websphere Portal 9.0
Ibm Websphere Portal 8.5
Ibm Websphere Portal
4.3
CVSSv2
CVE-2015-7413
Cross-site scripting (XSS) vulnerability in IBM WebSphere Portal 8.0.0 prior to 8.0.0.1 CF19 and 8.5.0 through CF08 allows remote malicious users to inject arbitrary web script or HTML via a crafted URL.
Ibm Websphere Portal 8.5.0.0
Ibm Websphere Portal 8.0.0.1
Ibm Websphere Portal 8.0.0.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
SSRF
server-side request forgery
CVE-2024-30067
CVE-2024-5553
CVE-2024-30095
IDOR
CVE-2024-35252
CVE-2024-23692
CVE-2024-27801
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »