|
274151
|
- |
|
hp
|
system_management_homepage
|
Cross-site request forgery (CSRF) vulnerability in HP System Management Homepage (SMH) before 7.5.0 allows remote authenticated users to hijack the authentication of unspecified victims via unknown v…
|
CWE-352
Origin Validation Error
|
CVE-2015-2134
|
2024-11-21 11:26 |
2015-07-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274152
|
- |
|
ibm
|
business_process_manager
|
Cross-site scripting (XSS) vulnerability in the REST API in IBM Business Process Manager (BPM) 7.5.x through 7.5.1.2, 8.0.x through 8.0.1.3, 8.5.0 through 8.5.0.1, 8.5.5 through 8.5.5.0, and 8.5.6 th…
|
CWE-79
Cross-site Scripting
|
CVE-2015-1906
|
2024-11-21 11:26 |
2015-07-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274153
|
- |
|
ibm
|
business_process_manager
|
The REST API in IBM Business Process Manager (BPM) 7.5.x through 7.5.1.2, 8.0.x through 8.0.1.3, 8.5.0 through 8.5.0.1, 8.5.5 through 8.5.5.0, and 8.5.6 through 8.5.6.0 allows remote authenticated us…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-1905
|
2024-11-21 11:26 |
2015-07-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274154
|
- |
|
ibm
|
infosphere_master_data_management
|
IBM InfoSphere Master Data Management Collaborative Edition 9.1, 10.1, 11.0, 11.3, and 11.4 before FP03 allows remote authenticated users to bypass intended access restrictions and read arbitrary pro…
|
CWE-264
CWE-200
Permissions, Privileges, and Access Controls
Information Exposure
|
CVE-2015-1984
|
2024-11-21 11:26 |
2015-07-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274155
|
- |
|
ibm
|
infosphere_master_data_management
|
IBM InfoSphere Master Data Management Collaborative Edition 9.1, 10.1, 11.0, 11.3, and 11.4 before FP03 allows remote authenticated users to obtain sensitive information via a crafted request, which …
|
CWE-200
Information Exposure
|
CVE-2015-1982
|
2024-11-21 11:26 |
2015-07-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274156
|
- |
|
ibm
|
infosphere_master_data_management
|
IBM InfoSphere Master Data Management Collaborative Edition 9.1, 10.1, 11.0, 11.3, and 11.4 before FP03 allows remote authenticated users to conduct clickjacking attacks via unspecified vectors.
|
CWE-20
Improper Input Validation
|
CVE-2015-1980
|
2024-11-21 11:26 |
2015-07-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274157
|
- |
|
ibm
|
case_manager
|
Multiple cross-site scripting (XSS) vulnerabilities in the Error dialog in IBM Case Manager 5.2.1 before 5.2.1.2 allow remote authenticated users to inject arbitrary web script or HTML via crafted in…
|
CWE-79
Cross-site Scripting
|
CVE-2015-1979
|
2024-11-21 11:26 |
2015-07-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274158
|
- |
|
ibm
|
infosphere_master_data_management
|
Cross-site scripting (XSS) vulnerability in IBM InfoSphere Master Data Management Collaborative Edition 9.1, 10.1, 11.0, 11.3, and 11.4 before FP03 allows remote authenticated users to inject arbitra…
|
CWE-79
Cross-site Scripting
|
CVE-2015-1968
|
2024-11-21 11:26 |
2015-07-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274159
|
- |
|
ibm
|
db2
|
The scalar-function implementation in IBM DB2 9.7 through FP10, 9.8 through FP5, 10.1 before FP5, and 10.5 through FP5 on Linux, UNIX, and Windows allows remote attackers to cause a denial of service…
|
CWE-17
Code
|
CVE-2015-1935
|
2024-11-21 11:26 |
2015-07-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274160
|
- |
|
ibm
|
db2
|
The Data Movement implementation in IBM DB2 9.7 through FP10, 9.8 through FP5, 10.1 before FP5, and 10.5 through FP5 on Linux, UNIX, and Windows allows remote authenticated users to bypass intended a…
|
CWE-284
Improper Access Control
|
CVE-2015-1922
|
2024-11-21 11:26 |
2015-07-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
