|
258341
|
6.5 |
MEDIUM
Network
|
ibm
|
inotes
expeditor
|
IBM Notes 8.5 and 9.0 is vulnerable to a denial of service. If a user is persuaded to click on a malicious link, it could cause the Notes client to hang and have to be restarted. IBM X-Force ID: 1213…
|
NVD-CWE-noinfo
|
CVE-2017-1129
|
2024-11-21 12:21 |
2017-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258342
|
8.8 |
HIGH
Network
|
ibm
|
emptoris_strategic_supply_management
|
IBM Emptoris Strategic Supply Management Platform 10.0.0.x through 10.1.1.x is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions tra…
|
CWE-352
Origin Validation Error
|
CVE-2017-1097
|
2024-11-21 12:21 |
2017-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258343
|
6.1 |
MEDIUM
Network
|
ibm
|
emptoris_sourcing
|
IBM Emptoris Sourcing 9.5 - 10.1.3 could allow a remote attacker to conduct phishing attacks, using an open redirect attack. By persuading a victim to visit a specially-crafted Web site, a remote att…
|
CWE-601
Open Redirect
|
CVE-2017-1450
|
2024-11-21 12:21 |
2017-08-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258344
|
5.4 |
MEDIUM
Network
|
ibm
|
emptoris_sourcing
|
IBM Emptoris Sourcing 9.5 - 10.1.3 could allow a remote attacker to conduct phishing attacks, using an open redirect attack. By persuading a victim to visit a specially-crafted Web site, a remote att…
|
CWE-601
Open Redirect
|
CVE-2017-1449
|
2024-11-21 12:21 |
2017-08-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258345
|
5.4 |
MEDIUM
Network
|
ibm
|
emptoris_sourcing
|
IBM Emptoris Sourcing 9.5 - 10.1.3 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality pot…
|
CWE-79
Cross-site Scripting
|
CVE-2017-1447
|
2024-11-21 12:21 |
2017-08-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258346
|
5.4 |
MEDIUM
Network
|
ibm
|
emptoris_sourcing
|
IBM Emptoris Sourcing 9.5 - 10.1.3 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality pot…
|
CWE-79
Cross-site Scripting
|
CVE-2017-1444
|
2024-11-21 12:21 |
2017-08-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258347
|
5.4 |
MEDIUM
Network
|
ibm
|
emptoris_spend_analysis
|
IBM Emptoris Spend Analysis 9.5.0.0 through 10.1.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended f…
|
CWE-79
Cross-site Scripting
|
CVE-2017-1446
|
2024-11-21 12:21 |
2017-08-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258348
|
5.4 |
MEDIUM
Network
|
ibm
|
emptoris_spend_analysis
|
IBM Emptoris Spend Analysis 9.5.0.0 through 10.1.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended f…
|
CWE-79
Cross-site Scripting
|
CVE-2017-1445
|
2024-11-21 12:21 |
2017-08-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258349
|
6.1 |
MEDIUM
Network
|
ibm
|
emptoris_services_procurement
|
IBM Emptoris Services Procurement 10.0.0.5 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functiona…
|
CWE-79
Cross-site Scripting
|
CVE-2017-1443
|
2024-11-21 12:21 |
2017-08-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258350
|
8.8 |
HIGH
Network
|
ibm
|
emptoris_services_procurement
|
IBM Emptoris Services Procurement 10.0.0.5 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the web…
|
CWE-352
Origin Validation Error
|
CVE-2017-1442
|
2024-11-21 12:21 |
2017-08-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
