Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
case manager vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2006-6052
NetEpi Case Manager prior to 0.98 generates different error messages depending on whether or not a username is valid, which allows remote malicious users to enumerate valid usernames.
Netepi Case Manager Netepi Case Manager 0.97
Netepi Case Manager Netepi Case Manager 0.93
Netepi Case Manager Netepi Case Manager 0.94
Netepi Case Manager Netepi Case Manager 0.95
Netepi Case Manager Netepi Case Manager 0.96
6.8
CVSSv2
CVE-2018-1884
IBM Case Manager 5.2.0.0, 5.2.0.4, 5.2.1.0, 5.2.1.7, 5.3.0.0, and 5.3.3.0 is vulnerable to a "zip slip" vulnerability which could allow a remote malicious user to execute code using directory traversal techniques. IBM X-Force ID: 151970.
Ibm Case Manager 5.2.1.7
Ibm Case Manager 5.3.0.0
Ibm Case Manager 5.3.3.0
Ibm Case Manager 5.2.0.0
Ibm Case Manager 5.2.1.0
Ibm Case Manager 5.2.0.4
3.5
CVSSv2
CVE-2019-4426
The Case Builder component shipped with 18.0.0.1 up to and including 19.0.0.2 and IBM Case Manager 5.1.1 up to and including 5.3 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended func...
Ibm Business Automation Workflow 18.0.0.0
Ibm Business Automation Workflow
Ibm Case Manager 5.1.1
Ibm Case Manager 5.2.0
Ibm Case Manager 5.2.1
Ibm Case Manager
3.5
CVSSv2
CVE-2015-1979
Multiple cross-site scripting (XSS) vulnerabilities in the Error dialog in IBM Case Manager 5.2.1 prior to 5.2.1.2 allow remote authenticated users to inject arbitrary web script or HTML via crafted input to the (1) addressability or (2) comments component.
Ibm Case Manager 5.2.1
Ibm Case Manager 5.2.1.1
7.5
CVSSv2
CVE-2007-6143
SQL injection vulnerability in default.asp (aka the Login Page) in VU Case Manager allows remote malicious users to execute arbitrary SQL commands via the password parameter.
Vu Case Manager
7.5
CVSSv2
CVE-2007-6168
SQL injection vulnerability in default.asp in VU Case Manager allows remote malicious users to execute arbitrary SQL commands via the username parameter, a different vector than CVE-2007-6143. NOTE: the provenance of this information is unknown; the details are obtained solely fr...
Vu Case Manager
3.5
CVSSv2
CVE-2020-4768
IBM Case Manager 5.2 and 5.3 and IBM Business Automation Workflow 18.0, 19.0, and 20.0 are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credenti...
Ibm Business Automation Workflow
Ibm Case Manager
4.3
CVSSv2
CVE-2013-6746
Cross-site scripting (XSS) vulnerability in FileNet P8 Platform Documentation Installable Info Center 4.5.1 up to and including 5.2.0 in IBM FileNet Business Process Manager 4.5.1 up to and including 5.1.0, FileNet Content Manager 4.5.1 up to and including 5.2.0, and Case Foundat...
Ibm Filenet Content Manager 5.1.0
Ibm Filenet Content Manager 5.0.0
Ibm Filenet Content Manager 4.5.1
Ibm Filenet P8 Business Process Manager 4.5.1
Ibm Filenet P8 Business Process Manager 5.0.0
Ibm Filenet Case Foundation 5.2.0
Ibm Filenet Content Manager 4.5.0
Ibm Filenet P8 Business Process Manager 5.1.0
Ibm Filenet Content Manager 5.2.0
7.1
CVSSv2
CVE-2022-23437
There's a vulnerability within the Apache Xerces Java (XercesJ) XML parser when handling specially crafted XML document payloads. This causes, the XercesJ XML parser to wait in an infinite loop, which may sometimes consume system resources for prolonged duration. This vulner...
Apache Xerces-j
Oracle Ilearning 6.2
Oracle Flexcube Universal Banking 12.4.0
Oracle Weblogic Server 12.2.1.3.0
Oracle Agile Plm 9.3.6
Oracle Weblogic Server 12.2.1.4.0
Oracle Peoplesoft Enterprise Peopletools 8.58
Oracle Weblogic Server 14.1.1.0.0
Oracle Retail Bulk Data Integration 16.0.3.0
Oracle Retail Merchandising System 16.0.3
Oracle Global Lifecycle Management Nextgen Oui Framework 13.9.4.2.2
Oracle Agile Engineering Data Management 6.2.1.0
Oracle Retail Service Backbone 16.0.3
Oracle Retail Financial Integration 16.0.3
Oracle Retail Integration Bus 16.0.3
Oracle Peoplesoft Enterprise Peopletools 8.59
Oracle Retail Service Backbone 15.0.3.1
Oracle Retail Service Backbone 14.1.3.2
Oracle Financial Services Enterprise Case Management 8.0.7.2.0
Oracle Banking Party Management 2.7.0
Oracle Retail Merchandising System 19.0.1
Oracle Retail Integration Bus 14.1.3.2
4.3
CVSSv2
CVE-2009-4387
The cross-site scripting (XSS) protection mechanism in ShowInContentAreaAction.do in ManageEngine Password Manager Pro (PMP) prior to 6.1 Build 6104 uses case-sensitive checks for malicious inputs, which allows remote malicious users to inject arbitrary web script or HTML via the...
Manageengine Password Manager Pro 5.2
Manageengine Password Manager Pro 5.1
Manageengine Password Manager Pro 5.0
Manageengine Password Manager Pro 4.8
Manageengine Password Manager Pro 4.7
Manageengine Password Manager Pro
Manageengine Password Manager Pro 5.4
Manageengine Password Manager Pro 4.6
Manageengine Password Manager Pro6.1
Manageengine Password Manager Pro 6.0
Manageengine Password Manager Pro 5.3
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32976
CVE-2024-33557
CVE-2024-36801
CVE-2024-35654
authentication bypass
CVE-2024-24919
CSRF
code execution
CVE-2024-27348
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »