Lucene search
K

151 matches found

ATTACKERKB
ATTACKERKB
added 2026/01/20 3:39 p.m.4 views

CVE-2025-36410

IBM ApplinX 11.1 could allow an authenticated user to perform unauthorized administrative actions on the server due to server-side enforcement of client-side security...

4.3CVSS5.3AI score0.00159EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/01/20 3:39 p.m.22 views

CVE-2025-36410

CVE-2025-36410 affects IBM ApplinX 11.1. An authenticated user could perform unauthorized administrative actions on the server due to server-side enforcement of client-side security. The Red Hat, CIRCL, NVD, and IBM bulletin entries corroborate the same description and indicate the issue resides ...

4.3CVSS5.5AI score0.00159EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2026/01/20 3:39 p.m.8 views

CVE-2025-36410 Multiple vulnerabilities found in IBM ApplinX.

IBM ApplinX 11.1 could allow an authenticated user to perform unauthorized administrative actions on the server due to server-side enforcement of client-side security...

3.1CVSS5.5AI score0.00159EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/01/20 3:39 p.m.25 views

CVE-2025-36410 Multiple vulnerabilities found in IBM ApplinX.

IBM ApplinX 11.1 could allow an authenticated user to perform unauthorized administrative actions on the server due to server-side enforcement of client-side security...

3.1CVSS0.00159EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/01/20 3:37 p.m.5 views

CVE-2025-36409 Multiple vulnerabilities found in IBM ApplinX.

IBM ApplinX 11.1 is vulnerable to cross-site scripting. This vulnerability allows an authenticated user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session...

5.4CVSS5.1AI score0.00147EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/01/20 3:37 p.m.3 views

CVE-2025-36409

IBM ApplinX 11.1 is vulnerable to cross-site scripting. This vulnerability allows an authenticated user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session...

5.4CVSS4.9AI score0.00147EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/01/20 3:37 p.m.14 views

CVE-2025-36409

IBM ApplinX 11.1 is affected by CVE-2025-36409: an authenticated user can perform cross-site scripting in the Web UI, potentially leaking credentials within a trusted session. Remediation: upgrade to a patched release (IBM ApplinX 11.1 update) via IBM Fix Central as described in IBM's security bu...

5.4CVSS5.1AI score0.00147EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2026/01/20 3:33 p.m.4 views

CVE-2025-36408 Multiple vulnerabilities found in IBM ApplinX.

IBM ApplinX 11.1 is vulnerable to stored cross-site scripting. This vulnerability allows an authenticated user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session...

6.4CVSS5.2AI score0.00164EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/01/20 3:33 p.m.4 views

CVE-2025-36408

IBM ApplinX 11.1 is vulnerable to stored cross-site scripting. This vulnerability allows an authenticated user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session...

6.4CVSS5AI score0.00164EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/01/20 3:33 p.m.18 views

CVE-2025-36408

CVE-2025-36408 affects IBM ApplinX 11.1. It is a stored cross-site scripting vulnerability, allowing an authenticated user to embed arbitrary JavaScript in the Web UI and potentially disclose credentials within a trusted session. Supported documents consistently identify the affected product/vers...

6.4CVSS5.2AI score0.00164EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2026/01/20 3:33 p.m.21 views

CVE-2025-36408 Multiple vulnerabilities found in IBM ApplinX.

IBM ApplinX 11.1 is vulnerable to stored cross-site scripting. This vulnerability allows an authenticated user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session...

6.4CVSS0.00164EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2026/01/20 11:54 a.m.9 views

Security Bulletin: Multiple vulnerabilities found in IBM ApplinX.

Summary IBM ApplinX has been updated in order to address the multiple vulnerabilities CVE-2025-36410, CVE-2025-36409, CVE-2025-36419, CVE-2025-36408, CVE-2025-36418, CVE-2025-36411. Vulnerability Details CVEID:CVE-2025-36410 DESCRIPTION: IBM ApplinX could allow an authenticated user to perform...

9.8CVSS5.3AI score0.0021EPSS
Exploits0Affected Software1
CNNVD
CNNVD
added 2026/01/20 12:0 a.m.7 views

IBM ApplinX 跨站脚本漏洞

IBM ApplinX is an International Business Machines IBM company focused on converting green screen interfaces into modern web-based applications. IBM ApplinX suffers from a cross-site scripting vulnerability that can be exploited by an attacker to cause credential disclosure...

5.4CVSS5.6AI score0.00147EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/01/20 12:0 a.m.14 views

PT-2026-3624

IBM ApplinX 11.1 is vulnerable to stored cross-site scripting. This vulnerability allows an authenticated user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session...

6.4CVSS5.2AI score0.00164EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/01/20 12:0 a.m.13 views

PT-2026-3626

IBM ApplinX 11.1 could allow an authenticated user to perform unauthorized administrative actions on the server due to server-side enforcement of client-side security...

3.1CVSS5.5AI score0.00159EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/01/20 12:0 a.m.7 views

IBM ApplinX 数据伪造问题漏洞

IBM ApplinX is an International Business Machines IBM company focused on converting green screen interfaces into modern Web-based applications. IBM ApplinX has a data forgery issue vulnerability that stems from improper JWT token validation, which can be exploited by an attacker to elevate...

9.8CVSS5.8AI score0.0015EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/01/20 12:0 a.m.8 views

IBM ApplinX 跨站请求伪造漏洞

IBM ApplinX is an International Business Machines IBM company focused on converting green screen interfaces into modern web-based applications. IBM ApplinX suffers from a cross-site request forgery vulnerability that stems from the WEB application not adequately verifying that a request is from a...

3.5CVSS5.7AI score0.00101EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/01/20 12:0 a.m.6 views

IBM ApplinX cross-site scripting vulnerability

IBM ApplinX is a product of American International Business Machines IBM that focuses on converting green-screen interfaces into modern web-based applications. Version 11.1 of IBM ApplinX contains a cross-site scripting vulnerability. This vulnerability arises because authenticated users can embe...

6.4CVSS5.8AI score0.00164EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/01/20 12:0 a.m.8 views

PT-2026-3627

IBM ApplinX 11.1 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts...

3.5CVSS5.4AI score0.00101EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/01/20 12:0 a.m.8 views

PT-2026-3631

IBM ApplinX 11.1 is vulnerable due to a privilege escalation vulnerability due to improper verification of JWT tokens. An attacker may be able to craft or modify a JSON web token in order to impersonate another user or to elevate their privileges...

7.3CVSS5.5AI score0.0015EPSS
Exploits0References2
Rows per page
Query Builder