|
264861
|
5.4 |
MEDIUM
Network
|
ibm
|
emptoris_strategic_supply_management
emptoris_supplier_lifecycle_management
|
IBM Emptoris Supplier Lifecycle Management 10.0.x and 10.1.x is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the …
|
CWE-79
Cross-site Scripting
|
CVE-2016-6121
|
2024-11-21 11:55 |
2017-08-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264862
|
7.5 |
HIGH
Network
|
trendmicro
|
control_manager
|
Information Disclosure vulnerability in the Dashboard and Error Pages in Trend Micro Control Manager SP3 6.0.
|
CWE-200
Information Exposure
|
CVE-2016-6220
|
2024-11-21 11:55 |
2017-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264863
|
6.1 |
MEDIUM
Network
|
ektron
|
ektron_content_management_system
|
Cross-site scripting (XSS) vulnerability in Ektron Content Management System before 9.1.0.184SP3(9.1.0.184.3.127) allows remote attackers to inject arbitrary web script or HTML via the rptStatus para…
|
CWE-79
Cross-site Scripting
|
CVE-2016-6133
|
2024-11-21 11:55 |
2017-07-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264864
|
5.4 |
MEDIUM
Network
|
ibm
|
emptoris_strategic_supply_management
|
IBM Emptoris Supplier Lifecycle Management 10.1.0.x is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended …
|
CWE-79
Cross-site Scripting
|
CVE-2016-6118
|
2024-11-21 11:55 |
2017-07-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264865
|
4.3 |
MEDIUM
Network
|
ibm
|
emptoris_contract_management
|
IBM Emptoris Contract Management 10.0 and 10.1 reveals detailed error messages in certain features that could cause an attacker to gain additional information to conduct further attacks. IBM X-Force …
|
CWE-200
Information Exposure
|
CVE-2016-6018
|
2024-11-21 11:55 |
2017-07-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264866
|
6.5 |
MEDIUM
Network
|
redhat
|
enterprise_linux
|
The mod_dontdothat component of the mod_dav_svn Apache module in Subversion as packaged in Red Hat Enterprise Linux 5.11 does not properly detect recursion during entity expansion, which allows remot…
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2016-6312
|
2024-11-21 11:55 |
2017-07-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264867
|
5.4 |
MEDIUM
Network
|
ibm
|
emptoris_strategic_supply_management
|
IBM Emptoris Strategic Supply Management Platform 10.0.0.x through 10.1.1.x is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thu…
|
CWE-79
Cross-site Scripting
|
CVE-2016-6019
|
2024-11-21 11:55 |
2017-07-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264868
|
5.4 |
MEDIUM
Network
|
ibm
|
emptoris_sourcing
|
IBM Emptoris Sourcing 9.5.x through 10.1.x is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functiona…
|
CWE-79
Cross-site Scripting
|
CVE-2016-6114
|
2024-11-21 11:55 |
2017-07-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264869
|
6.1 |
MEDIUM
Network
|
ektron
|
ektron_content_management_system
|
Cross-site scripting (XSS) vulnerability in Ektron Content Management System (CMS) before 9.1.0.184 SP3 (9.1.0.184.3.127) allows remote attackers to inject arbitrary web script or HTML via the ContTy…
|
CWE-79
Cross-site Scripting
|
CVE-2016-6201
|
2024-11-21 11:55 |
2017-07-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264870
|
6.1 |
MEDIUM
Network
|
bestpractical
|
request_tracker
|
Cross-site scripting (XSS) vulnerability in Request Tracker (RT) 4.x before 4.0.25, 4.2.x before 4.2.14, and 4.4.x before 4.4.2, when the AlwaysDownloadAttachments config setting is not in use, allow…
|
CWE-79
Cross-site Scripting
|
CVE-2016-6127
|
2024-11-21 11:55 |
2017-07-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
