|
253421
|
5.4 |
MEDIUM
Network
|
ibm
|
sterling_b2b_integrator
|
IBM Sterling B2B Integrator Standard Edition 5.2 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended fun…
|
CWE-79
Cross-site Scripting
|
CVE-2017-1482
|
2024-11-21 12:21 |
2017-12-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253422
|
4.3 |
MEDIUM
Network
|
ibm
|
sterling_b2b_integrator
|
IBM Sterling B2B Integrator Standard Edition 5.2 allows a user to view sensitive information that belongs to another user. IBM X-Force ID: 128619.
|
CWE-200
Information Exposure
|
CVE-2017-1481
|
2024-11-21 12:21 |
2017-12-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253423
|
5.4 |
MEDIUM
Network
|
ibm
|
tririga_application_platform
|
IBM TRIRIGA 3.2, 3.3, 3.4, and 3.5 could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to visit a malicious Web site, a remote attacker could exploit thi…
|
CWE-79
Cross-site Scripting
|
CVE-2017-1465
|
2024-11-21 12:21 |
2017-12-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253424
|
6.5 |
MEDIUM
Network
|
ibm
|
websphere_mq
|
IBM WebSphere MQ 7.5, 8.0, and 9.0 could allow an authenticated user to insert messages with a corrupt RFH header into the channel which would cause it to restart. IBM X-Force ID: 127803.
|
NVD-CWE-noinfo
|
CVE-2017-1433
|
2024-11-21 12:21 |
2017-12-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253425
|
8.8 |
HIGH
Network
|
ibm
|
atlas_ediscovery_process_management
|
IBM Atlas eDiscovery Process Management 6.0.3 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the attacker to view, add, modify or del…
|
CWE-89
SQL Injection
|
CVE-2017-1356
|
2024-11-21 12:21 |
2017-12-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253426
|
3.7 |
LOW
Network
|
ibm
|
atlas_ediscovery_process_management
|
IBM Atlas eDiscovery Process Management 6.0.3 stores sensitive information in URL parameters. This may lead to information disclosure if unauthorized parties have access to the URLs via server logs, …
|
CWE-200
Information Exposure
|
CVE-2017-1355
|
2024-11-21 12:21 |
2017-12-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253427
|
5.4 |
MEDIUM
Network
|
ibm
|
atlas_ediscovery_process_management
|
IBM Atlas eDiscovery Process Management 6.0.3 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functi…
|
CWE-79
Cross-site Scripting
|
CVE-2017-1354
|
2024-11-21 12:21 |
2017-12-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253428
|
3.5 |
LOW
Network
|
ibm
|
atlas_ediscovery_process_management
|
IBM Atlas eDiscovery Process Management 6.0.3 could allow an authenticated attacker to obtain sensitive information when an unsuspecting user clicks on unsafe third-party links. IBM X-Force ID: 12668…
|
CWE-200
Information Exposure
|
CVE-2017-1353
|
2024-11-21 12:21 |
2017-12-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253429
|
4.3 |
MEDIUM
Network
|
ibm
|
insights_foundation_for_energy
|
IBM Insights Foundation for Energy 2.0 could reveal sensitive information in error messages to authenticated users that could e used to conduct further attacks. IBM X-Force ID: 126457.
|
CWE-200
Information Exposure
|
CVE-2017-1342
|
2024-11-21 12:21 |
2017-12-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253430
|
3.7 |
LOW
Network
|
ibm
|
websphere_mq
|
IBM WebSphere MQ 8.0 and 9.0 could allow, under special circumstances, an unauthorized user to access an object which they should have been denied access. IBM X-Force ID: 126456.
|
NVD-CWE-noinfo
|
CVE-2017-1341
|
2024-11-21 12:21 |
2017-12-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
