Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
content navigator vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2018-1366
IBM Content Navigator 2.0 and 3.0 is vulnerable to Comma Separated Value (CSV) Injection. An attacker could exploit this vulnerability to exploit other vulnerabilities in spreadsheet software. IBM X-Force ID: 137452.
Ibm Content Navigator 2.0.2.8
Ibm Content Navigator 3.0.0
Ibm Content Navigator 3.0.1
Ibm Content Navigator 3.0.2
Ibm Content Navigator 3.0.3
Ibm Content Navigator 2.0.2.7
5.4
CVSSv3
CVE-2017-1331
IBM Content Navigator 2.0.3 and 3.0.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-For...
Ibm Content Navigator 2.0.3.6
Ibm Content Navigator 2.0.3.7
Ibm Content Navigator 2.0.3.8
Ibm Content Navigator 3.0.0
Ibm Content Navigator 2.0.3.5
5.4
CVSSv3
CVE-2018-1496
IBM Content Navigator 2.0.3, 3.0.0, 3.0.1, 3.0.2, and 3.0.3 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trus...
Ibm Content Navigator 2.0.3
Ibm Content Navigator 3.0.1
Ibm Content Navigator 3.0.2
Ibm Content Navigator 3.0.3
Ibm Content Navigator 3.0.0
5.4
CVSSv3
CVE-2017-1282
IBM Content Navigator & CMIS 2.0 and 3.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IB...
Ibm Content Navigator 2.0.3.8
Ibm Content Navigator 2.0.3.5
Ibm Content Navigator 3.0.0
Ibm Content Navigator 2.0.3.6
Ibm Content Navigator 2.0.3.7
5.4
CVSSv3
CVE-2017-1522
IBM Content Navigator & CMIS 2.0.3, 3.0.0, and 3.0.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted...
Ibm Content Navigator 2.0.3.8
Ibm Content Navigator 3.0.0
Ibm Content Navigator 3.0.1
NA
CVE-2014-0874
Cross-site scripting (XSS) vulnerability in IBM Content Navigator 2.x prior to 2.0.2.2-ICN-FP002 allows remote authenticated users to inject arbitrary web script or HTML via an unspecified parameter.
Ibm Content Navigator 2.0.0
Ibm Content Navigator 2.0.1
Ibm Content Navigator 2.0.2
NA
CVE-2014-0858
IBM Content Navigator 2.x prior to 2.0.2.2-ICN-FP002 allows remote authenticated users to bypass intended access restrictions and conduct deleteAction attacks via a modified URL.
Ibm Content Navigator 2.0.1
Ibm Content Navigator 2.0.2
Ibm Content Navigator 2.0.0
5.4
CVSSv3
CVE-2017-1502
IBM Content Navigator & CMIS 2.0.3, 3.0.0, and 3.0.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted...
Ibm Content Navigator 2.0.3
Ibm Content Navigator 3.0.0
Ibm Content Navigator 3.0.1
8.2
CVSSv3
CVE-2018-1364
IBM Content Navigator 2.0 and 3.0 is vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 137449.
Ibm Content Navigator 2.0.3
Ibm Content Navigator 3.0.3
Ibm Content Navigator 3.0.2
NA
CVE-2013-5462
IBM/ECMClient/configure/explodedformat/navigator/header.jsp in IBM Content Navigator 2.0.0, 2.0.1 prior to 2.0.1.2-ICN-FP002, and 2.0.2 prior to 2.0.2.1-ICN-FP001 allows remote malicious users to conduct clickjacking attacks via vectors involving FRAME elements.
Ibm Content Navigator 2.0.0
Ibm Content Navigator 2.0.1
Ibm Content Navigator 2.0.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30051
remote
CVE-2024-27954
CVE-2023-51483
CVE-2023-47782
SSRF
CVE-2024-24715
CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »