Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
hp application lifecycle management - vulnerabilities and exploits
(subscribe to this query)
187
VMScore
CVE-2020-2218
Jenkins HP ALM Quality Center Plugin 1.6 and previous versions stores a password unencrypted in its global configuration file on the Jenkins master where it can be viewed by users with access to the master file system.
Hp Application Lifecycle Management Quality Center Project Hp Application Lifecycle Management Quality Center
387
VMScore
CVE-2020-11022
In jQuery versions greater than or equal to 1.2 and prior to 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuer...
Jquery Jquery
Drupal Drupal
Debian Debian Linux 9.0
Fedoraproject Fedora 31
Fedoraproject Fedora 32
Fedoraproject Fedora 33
Oracle Weblogic Server 12.1.3.0.0
Oracle Jdeveloper 11.1.1.9.0
Oracle Retail Back Office 14.1
Oracle Retail Back Office 14.0
Oracle Peoplesoft Enterprise Peopletools 8.56
Oracle Weblogic Server 10.3.6.0.0
Oracle Communications Webrtc Session Controller 7.2
Oracle Weblogic Server 12.2.1.3.0
Oracle Agile Product Lifecycle Management For Process 6.2.0.0
Oracle Peoplesoft Enterprise Peopletools 8.57
Oracle Application Testing Suite 13.3.0.1
Oracle Retail Returns Management 14.0
Oracle Retail Returns Management 14.1
Oracle Jdeveloper 12.2.1.3.0
Oracle Policy Automation Connector For Siebel 10.4.6
Oracle Financial Services Market Risk Measurement And Management 8.0.6
13 Github repositories
409
VMScore
CVE-2014-2631
Unspecified vulnerability in HP Application Lifecycle Management (aka Quality Center) 11.5x and 12.0x allows local users to gain privileges via unknown vectors, aka ZDI-CAN-2138.
Hp Application Lifecycle Management 12.00
Hp Application Lifecycle Management 11.50
668
VMScore
CVE-2013-4836
Unspecified vulnerability in the GossipService SOAP Request implementation in the Synchronizer component prior to 1.4.2 in HP Application LifeCycle Management (ALM) allows remote malicious users to execute arbitrary code via unknown vectors, aka ZDI-CAN-1759.
Hp Alm Synchronizer
Hp Alm Synchronizer 1.10
Hp Alm Synchronizer 1.20
Hp Alm Synchronizer 1.30
Hp Alm Synchronizer 1.40
668
VMScore
CVE-2013-4834
Unspecified vulnerability in the client component in HP Application LifeCycle Management (ALM) prior to 11 p11 allows remote malicious users to execute arbitrary code via unknown vectors, aka ZDI-CAN-1327.
Hp Application Lifecycle Management
1000
VMScore
CVE-2013-4810
HP ProCurve Manager (PCM) 3.20 and 4.0, PCM+ 3.20 and 4.0, Identity Driven Manager (IDM) 4.0, and Application Lifecycle Management allow remote malicious users to execute arbitrary code via a marshalled object to (1) EJBInvokerServlet or (2) JMXInvokerServlet, aka ZDI-CAN-1760. N...
Hp Procurve Manager 3.20
Hp Procurve Manager 4.0
Hp Application Lifecycle Management -
Hp Identity Driven Manager 4.0
1 EDB exploit
383
VMScore
CVE-2013-4802
Cross-site scripting (XSS) vulnerability in HP Application Lifecycle Management (ALM) Quality Center prior to 11.51 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors, aka ZDI-CAN-1565.
Hp Application Lifecycle Management 11.00
Hp Application Lifecycle Management
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5834
CVE-2024-30100
CVE-2024-4577
physical
dos
CVE-2024-30099
CVE-2024-27801
CVE-2024-32146
logic flaw
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started