CVE-2026-2269 Uncanny Automator – Easy Automation, Integration, Webhooks & Workflow Builder Plugin <= 7.0.0.3 - Authenticated (Administrator+) Server-Side Request Forgery to Arbitrary File Upload

The Uncanny Automator – Easy Automation, Integration, Webhooks & Workflow Builder Plugin plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 7.0.0.3 via the downloadurl function. This makes it possible for authenticated attackers, with...

CVE-2011-3577

CVE-2011-3577 affects IBM WebSphere Commerce: versions 6.x up to 6.0.0.11 and 7.x up to 7.0.0.3 do not properly implement Activity Token authentication for Web Services. The underlying cause is an improper authentication mechanism, but the connected documents do not specify exact technical detail...

WebSphere 7.0.0.3 JAX-WS导致安全权限绕过漏洞

No description provided by source...

WebSphere 7.0.0.3 XML数字签名导致未知漏洞

No description provided by source...

WebSphere 7.0.0.3 UsernameToken 安全漏洞

No description provided by source...

WebSphere 7.0.0.* < 7.0.0.3 在z-OS上的多触发漏洞

No description provided by source...

WebSphere 7.0.0.3 的WAR包信息泄露

No description provided by source...

IBM Websphere Application Server 6.17.0 - Administrative Console Cross-Site Scripting

IBM Websphere Application Server 6.17.0 - Administrative Console Cross-Site Scripting source: https://www.securityfocus.com/bid/34001/info IBM WebSphere Application Server WAS is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker m...