Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
planning analytics vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2021-20526
IBM Planning Analytics 2.0 could allow a remote malicious user to obtain sensitive information, caused by the failure to set the HTTPOnly flag. A remote attacker could exploit this vulnerability to obtain sensitive information from the cookie. IBM X-Force ID: 198755.
Ibm Planning Analytics 2.0
4
CVSSv2
CVE-2021-29851
IBM Planning Analytics 2.0 could allow a remote malicious user to obtain sensitive information when a stack trace is returned in the browser. IBM X-Force ID: 205527.
Ibm Planning Analytics 2.0
3.5
CVSSv2
CVE-2021-29852
IBM Planning Analytics 2.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 2055...
Ibm Planning Analytics 2.0
2.1
CVSSv2
CVE-2020-4871
IBM Planning Analytics 2.0 allows web pages to be stored locally which can be read by another user on the system. IBM X-Force ID: 190834.
Ibm Planning Analytics 2.0
5
CVSSv2
CVE-2020-4873
IBM Planning Analytics 2.0 could allow an malicious user to obtain sensitive information due to an overly permissive CORS policy. IBM X-Force ID: 190836.
Ibm Planning Analytics 2.0
5.8
CVSSv2
CVE-2020-4882
IBM Planning Analytics 2.0 could be vulnerable to a Server-Side Request Forgery (SSRF) attack by constucting URLs from user-controlled data . This could enable malicious users to make arbitrary requests to the internal network or to the local file system. IBM X-Force ID: 190852.
Ibm Planning Analytics 2.0
4
CVSSv2
CVE-2020-4953
IBM Planning Analytics 2.0 could allow a remote authenticated malicious user to obtain information about an organization's internal structure by exposing sensitive information in HTTP repsonses. IBM X-Force ID: 192029.
Ibm Planning Analytics 2.0
4.3
CVSSv2
CVE-2019-4134
IBM Planning Analytics 2.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 1582...
Ibm Planning Analytics 2.0
3.5
CVSSv2
CVE-2020-4360
IBM Planning Analytics Local 2.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID...
Ibm Planning Analytics Local
4
CVSSv2
CVE-2020-4361
IBM Planning Analytics 2.0 could allow a remote malicious user to obtain sensitive information by disclosing private IP addresses in HTTP responses. IBM X-Force ID: 178766.
Ibm Planning Analytics 2.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4644
unprivileged
CVE-2024-3494
CVE-2024-22460
CVE-2024-26026
CVE-2024-23473
firewall
CVE-2024-28889
XML external entity
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »