Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
appscan vulnerabilities and exploits
(subscribe to this query)
570
VMScore
CVE-2019-4391
HCL AppScan Standard is vulnerable to XML External Entity Injection (XXE) attack when processing XML data
Hcltech Appscan
890
VMScore
CVE-2019-4392
HCL AppScan Standard Edition 9.0.3.13 and previous versions uses hard-coded credentials which can be exploited by malicious users to get unauthorized access to the system.
Hcltech Appscan
445
VMScore
CVE-2019-4393
HCL AppScan Standard is vulnerable to excessive authorization attempts
Hcltech Appscan
445
VMScore
CVE-2019-4325
"HCL AppScan Enterprise makes use of broken or risky cryptographic algorithm to store REST API user details."
Hcltech Appscan
445
VMScore
CVE-2019-4327
"HCL AppScan Enterprise uses hard-coded credentials which can be exploited by malicious users to get unauthorized access to application's encrypted files."
Hcltech Appscan
516
VMScore
CVE-2012-0738
IBM Security AppScan Enterprise prior to 8.6.0.2 and Rational Policy Tester prior to 8.5.0.3 do not validate X.509 certificates during scanning, which allows man-in-the-middle malicious users to spoof SSL servers via an arbitrary certificate.
Ibm Security Appscan 8.0.0.0
Ibm Security Appscan 6.1.1.0
Ibm Security Appscan 6.0.2.0
Ibm Security Appscan 6.0.1.0
Ibm Security Appscan 8.5.0.0
Ibm Security Appscan 8.0.0.1
Ibm Security Appscan 8.6.0.0
Ibm Security Appscan 8.5.0.1
Ibm Security Appscan 6.0.0.0
Ibm Rational Policy Tester 8.5.0.0
Ibm Rational Policy Tester 8.0.1.1
Ibm Rational Policy Tester 5.6.0.0
Ibm Rational Policy Tester 5.5.0.2
Ibm Rational Policy Tester 8.0.1.0
Ibm Rational Policy Tester 8.0.0.2
Ibm Rational Policy Tester 5.5.0.1
Ibm Rational Policy Tester 5.5.0.0
Ibm Rational Policy Tester
Ibm Rational Policy Tester 8.5.0.1
Ibm Rational Policy Tester 5.6.0.3
Ibm Rational Policy Tester 5.6.0.2
Ibm Rational Policy Tester 5.6.0.1
516
VMScore
CVE-2012-0741
IBM Security AppScan Enterprise prior to 8.6.0.2 and Rational Policy Tester prior to 8.5.0.3 do not validate X.509 certificates during use of the Manual Explore Proxy feature, which allows man-in-the-middle malicious users to spoof SSL servers via an arbitrary certificate.
Ibm Security Appscan 6.0.2.0
Ibm Security Appscan 6.0.1.0
Ibm Security Appscan 8.6.0.0
Ibm Security Appscan 8.5.0.1
Ibm Security Appscan 6.0.0.0
Ibm Security Appscan 8.0.0.0
Ibm Security Appscan 6.1.1.0
Ibm Security Appscan 8.5.0.0
Ibm Security Appscan 8.0.0.1
Ibm Rational Policy Tester 8.0.1.0
Ibm Rational Policy Tester 8.0.0.2
Ibm Rational Policy Tester 5.5.0.1
Ibm Rational Policy Tester 5.5.0.0
Ibm Rational Policy Tester 8.0.0.1
Ibm Rational Policy Tester 8.0.0.0
Ibm Security Appscan
Ibm Rational Policy Tester 8.5.0.0
Ibm Rational Policy Tester 8.0.1.1
Ibm Rational Policy Tester 5.6.0.1
Ibm Rational Policy Tester 5.6.0.0
Ibm Rational Policy Tester 5.5.0.2
Ibm Rational Policy Tester
445
VMScore
CVE-2009-1056
IBM Rational AppScan Enterprise prior to 5.5 FP1 allows remote malicious users to read arbitrary exported reports by "forcefully browsing."
Ibm Rational Appscan
NA
CVE-2023-37537
An unquoted service path vulnerability in HCL AppScan Presence, deployed as a Windows service in HCL AppScan on Cloud (ASoC), may allow a local malicious user to gain elevated privileges.
Hcltech Appscan Presence
312
VMScore
CVE-2019-4388
HCL AppScan Source 9.0.3.13 and previous versions is susceptible to cross-site scripting (XSS) attacks by allowing users to embed arbitrary JavaScript code in the Web UI.
Hcltech Appscan Source
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »