Lucene search
K

GHSA-VMQ9-CM7M-4P8P Improper Neutralization of Input During Web Page Generation in Dojo Dojo Objective Harness

🗓️ 14 May 2022 02:01:21Reported by GoogleType 
osv
 osv
🔗 osv.dev👁 25 Views

XSS vulnerability in Dojo Dojo Objective Harness (DOH) prior to version 1.14 could lead to victim browser exploitation, malware delivery, cookie theft, and CORS bypass

Related
Refs
ReporterTitlePublishedViews
Family
IBM Security Bulletins
Security Bulletin: IBM Security Verify Governance - Identity Manager has multiple vulnerabilities
22 Apr 202406:05
ibm
IBM Security Bulletins
Security Bulletin: EBICs client of IBM Sterling B2B Integrator vulnerable to multiple issues due to Dojo Toolkit
15 Mar 202319:45
ibm
IBM Security Bulletins
Security Bulletin: Multiple vulnerabilities fixed in IBM Security Verify Governance - Identity Manager Virtual Appliance
30 Jun 202305:54
ibm
IBM Security Bulletins
Security Bulletin: IBM Security Verify Governance - Containerized Identity Manager has multiple vulnerabilities
25 Apr 202405:15
ibm
IBM Security Bulletins
Security Bulletin: Multiple security vulnerabilities are addressed with IBM Cloud Pak for Business Automation iFixes for July 2022
11 Aug 202209:14
ibm
IBM Security Bulletins
Security Bulletin: IBM Security Verify Governance is affected by multiple vulnerabilities
6 Oct 202306:30
ibm
IBM Security Bulletins
Security Bulletin: Security vulnerability has been identified in dojo library shipped with IBM Guardium Key Lifecycle Manager (SKLM/GKLM) (CVE-2018-1000665)
15 Jun 202605:19
ibm
IBM Security Bulletins
Security Bulletin: IBM Master Data Management has vulnerabilites from use of vulnerable Dojo 1.3.2 in WebReports (CVE-2010-2276, CVE-2018-15494, CVE-2010-2274, CVE-2010-2275, CVE-2010-2273, CVE-2018-1000665)
25 Oct 202422:03
ibm
CVE
CVE-2018-1000665
6 Sep 201817:00
cve
Cvelist
CVE-2018-1000665
6 Sep 201817:00
cvelist
Rows per page

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

16 Feb 2024 08:13Current
6.1Medium risk
Vulners AI Score6.1
CVSS 36.1
EPSS0.01286
25