Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jazz reporting service vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2016-0315
The Report Builder and Data Collection Component (DCC) in IBM Jazz Reporting Service (JRS) 5.x prior to 5.0.2 ifix016 and 6.x prior to 6.0.1 ifix005 maintain session ID validity after a logout action, which allows remote authenticated users to hijack sessions by leveraging an una...
Ibm Jazz Reporting Service 6.0.1
Ibm Jazz Reporting Service 5.0.2
Ibm Jazz Reporting Service 5.0
Ibm Jazz Reporting Service 6.0
Ibm Jazz Reporting Service 5.0.1
5.4
CVSSv3
CVE-2016-0350
Cross-site scripting (XSS) vulnerability in the Report Builder and Data Collection Component (DCC) in IBM Jazz Reporting Service (JRS) 5.x prior to 5.0.2 ifix016 and 6.x prior to 6.0.1 ifix005 allows remote authenticated users to inject arbitrary web script or HTML via a crafted ...
Ibm Jazz Reporting Service 5.0
Ibm Jazz Reporting Service 6.0
Ibm Jazz Reporting Service 5.0.1
Ibm Jazz Reporting Service 6.0.1
Ibm Jazz Reporting Service 5.0.2
5.4
CVSSv3
CVE-2020-4718
IBM Jazz Reporting Service 6.0.6, 6.0.6.1, 7.0, and 7.0.1 is vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a...
Ibm Jazz Reporting Service 6.0.6
Ibm Jazz Reporting Service 6.0.6.1
Ibm Jazz Reporting Service 7.0
Ibm Jazz Reporting Service 7.0.1
7.5
CVSSv3
CVE-2015-7464
Report Builder in IBM Jazz Reporting Service (JRS) 5.x prior to 5.0.2-Rational-CLM-ifix011 and 6.0 prior to 6.0.0-Rational-CLM-ifix005 allows remote malicious users to cause a denial of service (Report Builder server outage) via a crafted request to a Report Builder instance URL.
Ibm Jazz Reporting Service 5.0.1
Ibm Jazz Reporting Service 5.0
Ibm Jazz Reporting Service 6.0
Ibm Jazz Reporting Service 5.0.2
5.4
CVSSv3
CVE-2015-7467
Cross-site scripting (XSS) vulnerability in Report Builder in IBM Jazz Reporting Service (JRS) 5.x prior to 5.0.2-Rational-CLM-ifix011 and 6.0 prior to 6.0.0-Rational-CLM-ifix005 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL.
Ibm Jazz Reporting Service 5.0.2
Ibm Jazz Reporting Service 5.0.1
Ibm Jazz Reporting Service 5.0
Ibm Jazz Reporting Service 6.0
4.3
CVSSv3
CVE-2015-7468
Report Builder in IBM Jazz Reporting Service (JRS) 5.x prior to 5.0.2-Rational-CLM-ifix011 and 6.0 prior to 6.0.0-Rational-CLM-ifix005 allows remote authenticated users to bypass intended restrictions on administrator tasks via unspecified vectors.
Ibm Jazz Reporting Service 5.0.2
Ibm Jazz Reporting Service 5.0
Ibm Jazz Reporting Service 6.0
Ibm Jazz Reporting Service 5.0.1
4.3
CVSSv3
CVE-2015-7469
Report Builder in IBM Jazz Reporting Service (JRS) 5.x prior to 5.0.2-Rational-CLM-ifix011 and 6.0 prior to 6.0.0-Rational-CLM-ifix005 allows remote authenticated users to bypass intended read-only restrictions by leveraging a JazzGuest role.
Ibm Jazz Reporting Service 6.0
Ibm Jazz Reporting Service 5.0.2
Ibm Jazz Reporting Service 5.0.1
Ibm Jazz Reporting Service 5.0
7.5
CVSSv3
CVE-2015-7470
Report Builder in IBM Jazz Reporting Service (JRS) 5.x prior to 5.0.2-Rational-CLM-ifix011 and 6.0 prior to 6.0.0-Rational-CLM-ifix005 allows man-in-the-middle malicious users to obtain sensitive information via unspecified vectors, as demonstrated by login information.
Ibm Jazz Reporting Service 6.0
Ibm Jazz Reporting Service 5.0
Ibm Jazz Reporting Service 5.0.1
Ibm Jazz Reporting Service 5.0.2
5.4
CVSSv3
CVE-2016-5897
IBM Jazz Reporting Service (JRS) is vulnerable to HTML injection. A remote attacker could inject malicious HTML code, which when viewed, would be executed in the victim's Web browser within the security context of the hosting site.
Ibm Jazz Reporting Service 6.0.1
Ibm Jazz Reporting Service 6.0
Ibm Jazz Reporting Service 6.0.2
5.4
CVSSv3
CVE-2016-6039
IBM Jazz Reporting Service (JRS) is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.
Ibm Jazz Reporting Service 6.0
Ibm Jazz Reporting Service 6.0.1
Ibm Jazz Reporting Service 6.0.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
CVE-2006-4304
wireless
CVE-2023-23022
local file inclusion
CVE-2024-27058
CVE-2024-33820
open redirect
CVE-2024-27079
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »