|
276921
|
- |
|
ibm
|
business_process_manager
|
The REST API in IBM Business Process Manager (BPM) 7.5.x through 7.5.1.2, 8.0.x through 8.0.1.3, 8.5.0 through 8.5.0.1, 8.5.5 through 8.5.5.0, and 8.5.6 through 8.5.6.0 allows remote authenticated us…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-1905
|
2024-11-21 11:26 |
2015-07-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276922
|
- |
|
ibm
|
infosphere_master_data_management
|
IBM InfoSphere Master Data Management Collaborative Edition 9.1, 10.1, 11.0, 11.3, and 11.4 before FP03 allows remote authenticated users to bypass intended access restrictions and read arbitrary pro…
|
CWE-264
CWE-200
Permissions, Privileges, and Access Controls
Information Exposure
|
CVE-2015-1984
|
2024-11-21 11:26 |
2015-07-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276923
|
- |
|
ibm
|
infosphere_master_data_management
|
IBM InfoSphere Master Data Management Collaborative Edition 9.1, 10.1, 11.0, 11.3, and 11.4 before FP03 allows remote authenticated users to obtain sensitive information via a crafted request, which …
|
CWE-200
Information Exposure
|
CVE-2015-1982
|
2024-11-21 11:26 |
2015-07-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276924
|
- |
|
ibm
|
infosphere_master_data_management
|
IBM InfoSphere Master Data Management Collaborative Edition 9.1, 10.1, 11.0, 11.3, and 11.4 before FP03 allows remote authenticated users to conduct clickjacking attacks via unspecified vectors.
|
CWE-20
Improper Input Validation
|
CVE-2015-1980
|
2024-11-21 11:26 |
2015-07-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276925
|
- |
|
ibm
|
case_manager
|
Multiple cross-site scripting (XSS) vulnerabilities in the Error dialog in IBM Case Manager 5.2.1 before 5.2.1.2 allow remote authenticated users to inject arbitrary web script or HTML via crafted in…
|
CWE-79
Cross-site Scripting
|
CVE-2015-1979
|
2024-11-21 11:26 |
2015-07-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276926
|
- |
|
ibm
|
infosphere_master_data_management
|
Cross-site scripting (XSS) vulnerability in IBM InfoSphere Master Data Management Collaborative Edition 9.1, 10.1, 11.0, 11.3, and 11.4 before FP03 allows remote authenticated users to inject arbitra…
|
CWE-79
Cross-site Scripting
|
CVE-2015-1968
|
2024-11-21 11:26 |
2015-07-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276927
|
- |
|
ibm
|
db2
|
The scalar-function implementation in IBM DB2 9.7 through FP10, 9.8 through FP5, 10.1 before FP5, and 10.5 through FP5 on Linux, UNIX, and Windows allows remote attackers to cause a denial of service…
|
CWE-17
Code
|
CVE-2015-1935
|
2024-11-21 11:26 |
2015-07-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276928
|
- |
|
ibm
|
db2
|
The Data Movement implementation in IBM DB2 9.7 through FP10, 9.8 through FP5, 10.1 before FP5, and 10.5 through FP5 on Linux, UNIX, and Windows allows remote authenticated users to bypass intended a…
|
CWE-284
Improper Access Control
|
CVE-2015-1922
|
2024-11-21 11:26 |
2015-07-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276929
|
- |
|
ibm
|
db2
|
IBM DB2 9.7 through FP10, 9.8 through FP5, 10.1 before FP5, and 10.5 through FP5 on Linux, UNIX, and Windows allows remote authenticated users to read certain administrative files via crafted use of …
|
CWE-200
Information Exposure
|
CVE-2015-1883
|
2024-11-21 11:26 |
2015-07-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276930
|
- |
|
apache
|
struts
|
The default exclude patterns (excludeParams) in Apache Struts 2.3.20 allow remote attackers to "compromise internal state of an application" via unspecified vectors.
|
NVD-CWE-noinfo
|
CVE-2015-1831
|
2024-11-21 11:26 |
2015-07-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
