Filtered by vendor Ibm
Subscriptions
Filtered by product Websphere Portal
Subscriptions
Total
128 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2015-7455 | 1 Ibm | 1 Websphere Portal | 2016-03-02 | N/A |
IBM WebSphere Portal 7.x through 7.0.0.2 CF29, 8.0.x before 8.0.0.1 CF20, and 8.5.x before 8.5.0.0 CF09 uses weak permissions for content items, which allows remote authenticated users to make modifications via the authoring UI. | ||||
CVE-2015-7428 | 1 Ibm | 1 Websphere Portal | 2016-03-02 | N/A |
Open redirect vulnerability in IBM WebSphere Portal 8.0.x before 8.0.0.1 CF20 and 8.5.x before 8.5.0.0 CF09 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a crafted URL. | ||||
CVE-2015-0195 | 1 Ibm | 2 Content Template Catalog, Websphere Portal | 2015-10-05 | N/A |
Cross-site scripting (XSS) vulnerability in IBM Content Template Catalog 4.x before 4.1.4 for WebSphere Portal 8.0.x and 4.x before 4.3.1 for WebSphere Portal 8.5.x allows remote attackers to inject arbitrary web script or HTML via a crafted URL. | ||||
CVE-2015-0139 | 1 Ibm | 1 Websphere Portal | 2015-09-11 | N/A |
Cross-site scripting (XSS) vulnerability in IBM WebSphere Portal 8.0.0 through 8.0.0.1 CF15 and 8.5.0 before CF05 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL. | ||||
CVE-2015-0177 | 1 Ibm | 1 Websphere Portal | 2015-09-11 | N/A |
Cross-site scripting (XSS) vulnerability in IBM WebSphere Portal 8.5.0 before CF05 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL. | ||||
CVE-2014-6214 | 1 Ibm | 1 Websphere Portal | 2015-08-11 | N/A |
Cross-site request forgery (CSRF) vulnerability in IBM WebSphere Portal 8.0.0 through 8.0.0.1 CF15 and 8.5.0 before CF05 allows remote attackers to hijack the authentication of arbitrary users for requests that insert XSS sequences. | ||||
CVE-2015-1899 | 1 Ibm | 1 Websphere Portal | 2015-05-26 | N/A |
IBM WebSphere Portal 8.5 through CF05 allows remote attackers to cause a denial of service (CPU consumption) via unspecified vectors. | ||||
CVE-2008-5675 | 1 Ibm | 1 Websphere Portal | 2011-03-08 | N/A |
Unspecified vulnerability in IBM WebSphere Portal 6.0 before 6.0.1.5 has unknown impact and attack vectors related to "Access problems with BasicAuthTAI." |