|
249891
|
6.1 |
MEDIUM
Network
|
ibm
|
inotes
|
IBM iNotes is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to cred…
|
CWE-79
Cross-site Scripting
|
CVE-2017-1421
|
2024-11-21 12:21 |
2017-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249892
|
4.3 |
MEDIUM
Network
|
ibm
|
rational_quality_manager
rational_team_concert
rational_doors_next_generation
rational_engineering_lifecycle_manager
rational_rhapsody_design_manager
rational_software_architect_design…
|
IBM Jazz Foundation Products could disclose sensitive information during a scan that could lead to further attacks against the system. IBM X-Force ID: 129619.
|
CWE-200
Information Exposure
|
CVE-2017-1507
|
2024-11-21 12:21 |
2017-12-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249893
|
5.4 |
MEDIUM
Network
|
ibm
|
connections
|
IBM Connections 5.5 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leadin…
|
CWE-79
Cross-site Scripting
|
CVE-2017-1498
|
2024-11-21 12:21 |
2017-12-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249894
|
3.7 |
LOW
Network
|
ibm
|
sterling_file_gateway
|
IBM Sterling File Gateway 2.2 could allow an unauthorized user to view files they should not have access to providing they know the directory location of the file. IBM X-Force ID: 128695.
|
CWE-200
Information Exposure
|
CVE-2017-1497
|
2024-11-21 12:21 |
2017-12-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249895
|
6.5 |
MEDIUM
Network
|
ibm
|
sterling_file_gateway
|
IBM Sterling File Gateway 2.2 could allow an authenticated attacker to obtain sensitive information such as login ids on the system. IBM X-Force ID: 128626.
|
CWE-200
Information Exposure
|
CVE-2017-1487
|
2024-11-21 12:21 |
2017-12-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249896
|
5.4 |
MEDIUM
Network
|
ibm
|
sterling_b2b_integrator
|
IBM Sterling B2B Integrator Standard Edition 5.2 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended fun…
|
CWE-79
Cross-site Scripting
|
CVE-2017-1482
|
2024-11-21 12:21 |
2017-12-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249897
|
4.3 |
MEDIUM
Network
|
ibm
|
sterling_b2b_integrator
|
IBM Sterling B2B Integrator Standard Edition 5.2 allows a user to view sensitive information that belongs to another user. IBM X-Force ID: 128619.
|
CWE-200
Information Exposure
|
CVE-2017-1481
|
2024-11-21 12:21 |
2017-12-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249898
|
5.4 |
MEDIUM
Network
|
ibm
|
tririga_application_platform
|
IBM TRIRIGA 3.2, 3.3, 3.4, and 3.5 could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to visit a malicious Web site, a remote attacker could exploit thi…
|
CWE-79
Cross-site Scripting
|
CVE-2017-1465
|
2024-11-21 12:21 |
2017-12-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249899
|
6.5 |
MEDIUM
Network
|
ibm
|
websphere_mq
|
IBM WebSphere MQ 7.5, 8.0, and 9.0 could allow an authenticated user to insert messages with a corrupt RFH header into the channel which would cause it to restart. IBM X-Force ID: 127803.
|
NVD-CWE-noinfo
|
CVE-2017-1433
|
2024-11-21 12:21 |
2017-12-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249900
|
8.8 |
HIGH
Network
|
ibm
|
atlas_ediscovery_process_management
|
IBM Atlas eDiscovery Process Management 6.0.3 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the attacker to view, add, modify or del…
|
CWE-89
SQL Injection
|
CVE-2017-1356
|
2024-11-21 12:21 |
2017-12-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
