Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm tririga application platform 3.4.1.0 vulnerabilities and exploits
(subscribe to this query)
312
VMScore
CVE-2014-8893
Multiple cross-site scripting (XSS) vulnerabilities in (1) mainpage.jsp and (2) GetImageServlet.img in IBM TRIRIGA Application Platform 3.2.1.x, 3.3.2 prior to 3.3.2.3, and 3.4.1 prior to 3.4.1.1 allow remote authenticated users to inject arbitrary web script or HTML via a crafte...
Ibm Tririga Application Platform 3.2.1
Ibm Tririga Application Platform 3.4.0.0
Ibm Tririga Application Platform 3.3.2.0
Ibm Tririga Application Platform 3.4.1.0
Ibm Tririga Application Platform 3.4.0.1
Ibm Tririga Application Platform 3.3.2.1
Ibm Tririga Application Platform 3.3.2.2
436
VMScore
CVE-2014-8894
Open redirect vulnerability in IBM TRIRIGA Application Platform 3.2.1.x, 3.3.2 prior to 3.3.2.3, and 3.4.1 prior to 3.4.1.1 allows remote authenticated users to redirect users to arbitrary web sites and conduct phishing attacks via the out parameter.
Ibm Tririga Application Platform 3.4.0.0
Ibm Tririga Application Platform 3.3.2.0
Ibm Tririga Application Platform 3.3.2.1
Ibm Tririga Application Platform 3.4.1.0
Ibm Tririga Application Platform 3.4.0.1
Ibm Tririga Application Platform 3.3.2.2
Ibm Tririga Application Platform 3.2.1
383
VMScore
CVE-2014-8895
IBM TRIRIGA Application Platform 3.2.1.x, 3.3.2 prior to 3.3.2.3, and 3.4.1 prior to 3.4.1.1 allows remote malicious users to bypass intended access restrictions and read the image files of arbitrary users via a crafted URL.
Ibm Tririga Application Platform 3.4.1.0
Ibm Tririga Application Platform 3.3.2.0
Ibm Tririga Application Platform 3.3.2.1
Ibm Tririga Application Platform 3.4.0.1
Ibm Tririga Application Platform 3.4.0.0
Ibm Tririga Application Platform 3.3.2.2
Ibm Tririga Application Platform 3.2.1
312
VMScore
CVE-2016-0387
Cross-site scripting (XSS) vulnerability in IBM TRIRIGA Application Platform 3.3 prior to 3.3.2.6, 3.4 prior to 3.4.2.4, and 3.5 prior to 3.5.0.2 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL, a different vulnerability than CVE-2016-28...
Ibm Tririga Application Platform 3.4.2.2
Ibm Tririga Application Platform 3.4.2.1
Ibm Tririga Application Platform 3.3.2.1
Ibm Tririga Application Platform 3.3.2.0
Ibm Tririga Application Platform 3.3.0.1
Ibm Tririga Application Platform 3.3.0.0
Ibm Tririga Application Platform 3.4.2.0
Ibm Tririga Application Platform 3.4.1.2
Ibm Tririga Application Platform 3.3.1.2
Ibm Tririga Application Platform 3.3.1.1
Ibm Tririga Application Platform 3.3.2.4
Ibm Tririga Application Platform 3.4.0.0
Ibm Tririga Application Platform 3.5.0.1
Ibm Tririga Application Platform 3.4.1.3
Ibm Tririga Application Platform 3.4.1.1
Ibm Tririga Application Platform 3.3.2.3
Ibm Tririga Application Platform 3.3.2.5
Ibm Tririga Application Platform 3.5.0.0
Ibm Tririga Application Platform 3.4.2.3
Ibm Tririga Application Platform 3.4.1.0
Ibm Tririga Application Platform 3.4.0.1
Ibm Tririga Application Platform 3.3.2.2
356
VMScore
CVE-2016-0362
IBM TRIRIGA Application Platform 3.3 prior to 3.3.2.6, 3.4 prior to 3.4.2.4, and 3.5 prior to 3.5.0.2 allows remote authenticated users to conduct server-side request forgery (SSRF) attacks, and trigger network traffic to arbitrary intranet or Internet hosts, via a crafted proxy ...
Ibm Tririga Application Platform 3.4.1.3
Ibm Tririga Application Platform 3.4.1.1
Ibm Tririga Application Platform 3.3.2.4
Ibm Tririga Application Platform 3.3.2.2
Ibm Tririga Application Platform 3.3.2.0
Ibm Tririga Application Platform 3.3.0.2
Ibm Tririga Application Platform 3.3.0.0
Ibm Tririga Application Platform 3.5.0.0
Ibm Tririga Application Platform 3.4.2.3
Ibm Tririga Application Platform 3.4.2.2
Ibm Tririga Application Platform 3.4.2.1
Ibm Tririga Application Platform 3.3.1.3
Ibm Tririga Application Platform 3.3.1.2
Ibm Tririga Application Platform 3.3.1.1
Ibm Tririga Application Platform 3.3.1.0
Ibm Tririga Application Platform 3.4.1.0
Ibm Tririga Application Platform 3.4.0.1
Ibm Tririga Application Platform 3.4.0.0
Ibm Tririga Application Platform 3.3.2.5
Ibm Tririga Application Platform 3.5.0.1
Ibm Tririga Application Platform 3.4.2.0
Ibm Tririga Application Platform 3.4.1.2
578
VMScore
CVE-2016-0374
The builder tools in IBM TRIRIGA Application Platform 3.3 prior to 3.3.2.6, 3.4 prior to 3.4.2.4, and 3.5 prior to 3.5.0.2 allow remote authenticated users to gain privileges for application modification via unspecified vectors.
Ibm Tririga Application Platform 3.5.0.1
Ibm Tririga Application Platform 3.5.0.0
Ibm Tririga Application Platform 3.4.2.3
Ibm Tririga Application Platform 3.4.2.2
Ibm Tririga Application Platform 3.3.2.1
Ibm Tririga Application Platform 3.3.2.0
Ibm Tririga Application Platform 3.3.1.3
Ibm Tririga Application Platform 3.3.1.2
Ibm Tririga Application Platform 3.3.1.1
Ibm Tririga Application Platform 3.4.2.0
Ibm Tririga Application Platform 3.4.1.2
Ibm Tririga Application Platform 3.3.2.5
Ibm Tririga Application Platform 3.3.2.3
Ibm Tririga Application Platform 3.3.1.0
Ibm Tririga Application Platform 3.3.0.1
Ibm Tririga Application Platform 3.4.1.1
Ibm Tririga Application Platform 3.4.1.0
Ibm Tririga Application Platform 3.4.0.1
Ibm Tririga Application Platform 3.4.0.0
Ibm Tririga Application Platform 3.4.2.1
Ibm Tririga Application Platform 3.4.1.3
Ibm Tririga Application Platform 3.3.2.4
312
VMScore
CVE-2016-9737
IBM TRIRIGA 3.3, 3.4, and 3.5 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM Reference #: ...
Ibm Tririga Application Platform 3.5.2
Ibm Tririga Application Platform 3.3.1.3
Ibm Tririga Application Platform 3.3.2.3
Ibm Tririga Application Platform 3.3.2.4
Ibm Tririga Application Platform 3.3.2.5
Ibm Tririga Application Platform 3.4.2.5
Ibm Tririga Application Platform 3.3.2.1
Ibm Tririga Application Platform 3.4.0.1
Ibm Tririga Application Platform 3.4.1.1
Ibm Tririga Application Platform 3.4.2.2
Ibm Tririga Application Platform 3.4.2.4
Ibm Tririga Application Platform 3.3.0.1
Ibm Tririga Application Platform 3.3.0.2
Ibm Tririga Application Platform 3.3.1.0
Ibm Tririga Application Platform 3.3.1.1
Ibm Tririga Application Platform 3.4.1.2
Ibm Tririga Application Platform 3.4.1.3
Ibm Tririga Application Platform 3.4.2.0
Ibm Tririga Application Platform 3.4.2.1
Ibm Tririga Application Platform 3.3.0.0
Ibm Tririga Application Platform 3.3.1.2
Ibm Tririga Application Platform 3.3.2.0
356
VMScore
CVE-2017-1171
The IBM TRIRIGA Application Platform 3.3, 3,4, and 3,5 contain a vulnerability that could allow an authenticated user to execute Application actions they do not have access to. IBM Reference #: 2001083.
Ibm Tririga Application Platform 3.3.1.1
Ibm Tririga Application Platform 3.3.1.3
Ibm Tririga Application Platform 3.4.0.0
Ibm Tririga Application Platform 3.4.1.0
Ibm Tririga Application Platform 3.4.2.3
Ibm Tririga Application Platform 3.4.2.5
Ibm Tririga Application Platform 3.5.1.1
Ibm Tririga Application Platform 3.5.1.3
Ibm Tririga Application Platform 3.3.2.1
Ibm Tririga Application Platform 3.3.2.2
Ibm Tririga Application Platform 3.3.2.3
Ibm Tririga Application Platform 3.3.2.4
Ibm Tririga Application Platform 3.5.0.0
Ibm Tririga Application Platform 3.5.0.1
Ibm Tririga Application Platform 3.5.0.2
Ibm Tririga Application Platform 3.5.1
Ibm Tririga Application Platform 3.3.0.0
Ibm Tririga Application Platform 3.3.0.1
Ibm Tririga Application Platform 3.3.0.2
Ibm Tririga Application Platform 3.3.1.0
Ibm Tririga Application Platform 3.4.1.2
Ibm Tririga Application Platform 3.4.1.3
578
VMScore
CVE-2017-1153
IBM TRIRIGA Report Manager 3.2 up to and including 3.5 contains a vulnerability that could allow an authenticated user to execute actions that they do not have access to. IBM Reference #: 1999563.
Ibm Tririga Application Platform 3.5.1.3
Ibm Tririga Application Platform 3.5.0.0
Ibm Tririga Application Platform 3.3.1.3
Ibm Tririga Application Platform 3.3.2.1
Ibm Tririga Application Platform 3.4.1.0
Ibm Tririga Application Platform 3.4.1.2
Ibm Tririga Application Platform 3.4.2.3
Ibm Tririga Application Platform 3.4.2.5
Ibm Tririga Application Platform 3.5.0.2
Ibm Tririga Application Platform 3.5.1
Ibm Tririga Application Platform 3.5.1.1
Ibm Tririga Application Platform 3.5.1.2
Ibm Tririga Application Platform 3.3.2.3
Ibm Tririga Application Platform 3.3.2.4
Ibm Tririga Application Platform 3.3.2.5
Ibm Tririga Application Platform 3.4.0.0
Ibm Tririga Application Platform 3.3.0.1
Ibm Tririga Application Platform 3.3.0.2
Ibm Tririga Application Platform 3.3.1.0
Ibm Tririga Application Platform 3.3.1.1
Ibm Tririga Application Platform 3.3.1.2
Ibm Tririga Application Platform 3.4.1.3
383
VMScore
CVE-2016-6000
IBM TRIRIGA Application Platform is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.
Ibm Tririga Application Platform 3.4.2.4
Ibm Tririga Application Platform 3.4.2.0
Ibm Tririga Application Platform 3.4.2.1
Ibm Tririga Application Platform 3.4.2.2
Ibm Tririga Application Platform 3.3.0.0
Ibm Tririga Application Platform 3.3.0.1
Ibm Tririga Application Platform 3.3.0.2
Ibm Tririga Application Platform 3.3.1.0
Ibm Tririga Application Platform 3.5.1.0
Ibm Tririga Application Platform 3.5.0.1
Ibm Tririga Application Platform 3.4.2.3
Ibm Tririga Application Platform 3.4.1.2
Ibm Tririga Application Platform 3.4.0.0
Ibm Tririga Application Platform 3.3.2.1
Ibm Tririga Application Platform 3.3.2.4
Ibm Tririga Application Platform 3.3.1.2
Ibm Tririga Application Platform 3.4.1.0
Ibm Tririga Application Platform 3.4.0.1
Ibm Tririga Application Platform 3.3.2.2
Ibm Tririga Application Platform 3.3.2.0
Ibm Tririga Application Platform 3.5.0.0
Ibm Tririga Application Platform 3.5.1.1
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32886
insecure direct object reference
CVE-2024-34342
file inclusion
CVE-2024-34562
CVE-2024-34347
CVE-2024-26026
CVE-2024-4647
unprivileged
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »