|
266151
|
5.4 |
MEDIUM
Network
|
ibm
|
tririga_application_platform
|
Cross-site scripting (XSS) vulnerability in the My Reports component in IBM TRIRIGA Application Platform 3.3 before 3.3.2.6, 3.4 before 3.4.2.3, and 3.5 before 3.5.0.1 allows remote attackers to inje…
|
CWE-79
Cross-site Scripting
|
CVE-2016-0344
|
2024-11-21 11:41 |
2018-02-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266152
|
4.3 |
MEDIUM
Network
|
ibm
|
tririga_application_platform
|
IBM TRIRIGA Application Platform 3.3 before 3.3.2.6, 3.4 before 3.4.2.3, and 3.5 before 3.5.0.1 allows remote authenticated users to obtain sensitive information by reading an error message. IBM X-Fo…
|
CWE-200
Information Exposure
|
CVE-2016-0343
|
2024-11-21 11:41 |
2018-02-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266153
|
5.4 |
MEDIUM
Network
|
ibm
|
tririga_application_platform
|
IBM TRIRIGA Application Platform 3.3 before 3.3.2.6, 3.4 before 3.4.2.3, and 3.5 before 3.5.0.1 allows remote authenticated users to read or modify arbitrary reports by leveraging an incorrect grant …
|
CWE-284
Improper Access Control
|
CVE-2016-0342
|
2024-11-21 11:41 |
2018-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266154
|
5.4 |
MEDIUM
Network
|
ibm
|
emptoris_sourcing
|
Open redirect vulnerability in IBM Emptoris Sourcing 10.0.0.x before 10.0.0.1_iFix3, 10.0.1.x before 10.0.1.3_iFix3, 10.0.2.x before 10.0.2.8_iFix1, 10.0.4.0 before 10.0.4.0_iFix8, and 10.1.0.0 befor…
|
CWE-601
Open Redirect
|
CVE-2016-0329
|
2024-11-21 11:41 |
2018-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266155
|
7.5 |
HIGH
Network
|
ibm
|
tririga_application_platform
|
IBM TRIRIGA Application Platform before 3.3.2 allows remote attackers to obtain sensitive information via vectors related to granting unauthenticated access to Document Manager. IBM X-Force ID: 11148…
|
CWE-200
Information Exposure
|
CVE-2016-0312
|
2024-11-21 11:41 |
2018-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266156
|
5.4 |
MEDIUM
Network
|
ibm
|
tivoli_business_service_manager
|
Cross-site scripting (XSS) vulnerability in IBM Tivoli Business Service Manager 6.1.0 before 6.1.0-TIV-BSM-FP0004 and 6.1.1 before 6.1.1-TIV-BSM-FP0004 allows remote attackers to inject arbitrary web…
|
CWE-79
Cross-site Scripting
|
CVE-2016-0311
|
2024-11-21 11:41 |
2018-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266157
|
5.4 |
MEDIUM
Network
|
ibm
|
tivoli_integrated_portal
|
Cross-site scripting (XSS) vulnerability in IBM Tivoli Integrated Portal 2.2.0.0 through 2.2.0.15 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2016-0303
|
2024-11-21 11:41 |
2018-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266158
|
5.4 |
MEDIUM
Network
|
ibm
|
tririga_application_platform
|
IBM TRIRIGA Application Platform 3.3 before 3.3.2.6, 3.4 before 3.4.2.3, and 3.5 before 3.5.0.1 might allow remote attackers to access arbitrary JSP pages via vectors related to improper input valida…
|
CWE-20
Improper Input Validation
|
CVE-2016-0300
|
2024-11-21 11:41 |
2018-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266159
|
6.5 |
MEDIUM
Network
|
ibm
|
db2
|
IBM DB2 9.7, 10.1 before FP6, and 10.5 before FP8 on AIX, Linux, HP, Solaris and Windows allow remote authenticated users to cause a denial of service (daemon crash) via a SELECT statement with a sub…
|
CWE-20
Improper Input Validation
|
CVE-2016-0215
|
2024-11-21 11:41 |
2018-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266160
|
5.4 |
MEDIUM
Network
|
ibm
|
algo_risk_application
|
IBM Algorithmics One-Algo Risk Application (ARA) 4.9.1 through 5.1.0 allows remote authenticated users to conduct clickjacking attacks via unspecified vectors. IBM X-Force ID: 109399.
|
CWE-20
Improper Input Validation
|
CVE-2016-0207
|
2024-11-21 11:41 |
2018-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
