CVE-2018-1808

🗓️ 13 Nov 2018 15:00:00Reported by ibmType

IBM WebSphere Commerce 9.0.0.0 through 9.0.0.6 server-side code injection vulnerabilit

Reporter	Title	Published	Views	Family All 6
CNVD	IBM WebSphere Commerce Code Injection Vulnerability	29 Oct 201800:00	–	cnvd
Cvelist	CVE-2018-1808	13 Nov 201815:00	–	cvelist
EUVD	EUVD-2018-12387	7 Oct 202500:30	–	euvd
NVD	CVE-2018-1808	13 Nov 201815:29	–	nvd
OSV	CVE-2018-1808	13 Nov 201815:29	–	osv
Prion	Code injection	13 Nov 201815:29	–	prion

NVD

Vulners

Node

ibm websphere_commerceRange9.0.0.0–9.0.0.6

[
  {
    "product": "WebSphere Commerce",
    "vendor": "IBM",
    "versions": [
      {
        "status": "affected",
        "version": "9.0.0.0"
      },
      {
        "status": "affected",
        "version": "9.0.0.4"
      },
      {
        "status": "affected",
        "version": "9.0.0.1"
      },
      {
        "status": "affected",
        "version": "9.0.0.2"
      },
      {
        "status": "affected",
        "version": "9.0.0.3"
      },
      {
        "status": "affected",
        "version": "9.0.0.5"
      },
      {
        "status": "affected",
        "version": "9.0.0.6"
      }
    ]
  }
]

Source	Link
securitytracker	www.securitytracker.com/id/1042034
www-01	www.www-01.ibm.com/support/docview.wss
exchange	www.exchange.xforce.ibmcloud.com/vulnerabilities/149828

17 Jun 2026 01:51Current

8.4High risk

Vulners AI Score8.4

CVSS 26.5

CVSS 34.3 - 8.8

EPSS0.01594

CWE-94