Lucene search
K

292 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.10 views

EUVD-2022-27464

Malicious code in bioql PyPI...

9.8CVSS6.4AI score0.00418EPSS
Exploits0References2
CNVD
CNVD
added 2022/06/22 12:0 a.m.19 views

IBM Curam Social Program Management code issue vulnerability (CNVD-2022-54649)

IBM Curam Social Program Management is a business and technology solution from IBM that provides pre-built health and social program components, business processes, toolsets and interfaces on top of a dynamically configurable architecture. A code issue vulnerability exists in versions 8.0.0 and...

9.8CVSS3.2AI score0.00486EPSS
Exploits0References1
OSV
OSV
added 2022/06/20 5:15 p.m.14 views

CVE-2022-22318

IBM Curam Social Program Management 8.0.0 and 8.0.1 does not invalidate session after logout which could allow an authenticated user to impersonate another user on the system...

9.8CVSS5.5AI score0.00418EPSS
Exploits0References2
OSV
OSV
added 2022/06/20 5:15 p.m.6 views

CVE-2022-22317

IBM Curam Social Program Management 8.0.0 and 8.0.1 does not invalidate session after logout which could allow an authenticated user to impersonate another user on the system. IBM X-Force ID: 218281...

9.8CVSS5.5AI score0.00486EPSS
Exploits0References2
NVD
NVD
added 2022/06/20 5:15 p.m.21 views

CVE-2022-22317

IBM Curam Social Program Management 8.0.0 and 8.0.1 does not invalidate session after logout which could allow an authenticated user to impersonate another user on the system. IBM X-Force ID: 218281...

9.8CVSS0.00486EPSS
Exploits0References2
NVD
NVD
added 2022/06/20 5:15 p.m.29 views

CVE-2022-22318

IBM Curam Social Program Management 8.0.0 and 8.0.1 does not invalidate session after logout which could allow an authenticated user to impersonate another user on the system...

9.8CVSS0.00418EPSS
Exploits0References2
Prion
Prion
added 2022/06/20 5:15 p.m.17 views

Code injection

IBM Curam Social Program Management 8.0.0 and 8.0.1 does not invalidate session after logout which could allow an authenticated user to impersonate another user on the system...

6.5CVSS9.1AI score0.00418EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2022/06/20 4:25 p.m.78 views

CVE-2022-22318

IBM Curam Social Program Management (Cúram SPM) versions 8.0.0–8.0.1 are affected by a session timeout issue where the system does not invalidate a user’s session after logout, enabling an authenticated user to impersonate another user. IBM’s Security Bulletin (CVE-2022-22318) states the vulnerab...

9.8CVSS9.2AI score0.00418EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2022/06/20 4:25 p.m.27 views

CVE-2022-22318

IBM Curam Social Program Management 8.0.0 and 8.0.1 does not invalidate session after logout which could allow an authenticated user to impersonate another user on the system...

5.9CVSS9.4AI score0.00418EPSS
Exploits0References2
Cvelist
Cvelist
added 2022/06/20 4:25 p.m.28 views

CVE-2022-22317

IBM Curam Social Program Management 8.0.0 and 8.0.1 does not invalidate session after logout which could allow an authenticated user to impersonate another user on the system. IBM X-Force ID: 218281...

5.9CVSS8.8AI score0.00486EPSS
Exploits0References2
CVE
CVE
added 2022/06/20 4:25 p.m.80 views

CVE-2022-22317

CVE-2022-22317 affects IBM Cúram Social Program Management 8.0.0–8.0.1. A code issue causes the session not to be invalidated after logout, enabling an authenticated user to impersonate another user. Connected sources (CNVD-2022-54649, IBM bulletin) confirm the root cause and affected versions, a...

9.8CVSS8.8AI score0.00486EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2022/06/20 12:0 a.m.17 views

IBM Curam Social Program Management 代码问题漏洞

IBM Curam Social Program Management is an IBM business and technology solution that provides pre-built health and social program components, business processes, toolsets and interfaces on top of a dynamically configurable architecture. The vulnerability stems from the failure of the program to...

9.8CVSS5.6AI score0.00418EPSS
Exploits0References3
CNNVD
CNNVD
added 2022/06/20 12:0 a.m.6 views

IBM Curam Social Program Management 代码问题漏洞

IBM Curam Social Program Management is a business and technology solution from IBM that provides pre-built health and social program components, business processes, toolsets and interfaces on top of a dynamically configurable architecture. A code issue vulnerability exists in versions 8.0.0 and...

9.8CVSS5.7AI score0.00486EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2022/06/17 12:0 a.m.6 views

CVE-2022-22317

IBM Curam Social Program Management 8.0.0 and 8.0.1 does not invalidate session after logout which could allow an authenticated user to impersonate another user on the system. IBM X-Force ID: 218281...

9.8CVSS6.6AI score0.00486EPSS
Exploits0References3Affected Software1
ATTACKERKB
ATTACKERKB
added 2022/06/17 12:0 a.m.6 views

CVE-2022-22318

IBM Curam Social Program Management 8.0.0 and 8.0.1 does not invalidate session after logout which could allow an authenticated user to impersonate another user on the system...

9.8CVSS6.6AI score0.00418EPSS
Exploits0References3Affected Software1
CNVD
CNVD
added 2022/04/13 12:0 a.m.19 views

IBM Curam Social Program Management Cross-Site Scripting Vulnerability (CNVD-2022-46461)

IBM Curam Social Program Management is a business and technology solution from IBM that provides pre-built health and social program components, business processes, toolsets and interfaces on top of a dynamically configurable architecture. The vulnerability can be exploited by attackers to cause...

5.4CVSS2AI score0.00495EPSS
Exploits0References1
OSV
OSV
added 2022/04/11 7:15 p.m.3 views

CVE-2021-39068

IBM Curam Social Program Management 8.0.1 and 7.0.11 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force...

5.4CVSS5.4AI score0.00495EPSS
Exploits0References2
NVD
NVD
added 2022/04/11 7:15 p.m.25 views

CVE-2021-39068

IBM Curam Social Program Management 8.0.1 and 7.0.11 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force...

5.4CVSS0.00495EPSS
Exploits0References2
Prion
Prion
added 2022/04/11 7:15 p.m.20 views

Cross site scripting

IBM Curam Social Program Management 8.0.1 and 7.0.11 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force...

3.5CVSS5.2AI score0.00495EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2022/04/11 6:17 p.m.76 views

CVE-2021-39068

CVE-2021-39068 affects IBM Cúram Social Program Management versions 8.0.1 and 7.0.11. It is a cross-site scripting (XSS) vulnerability in the Web UI that allows embedding arbitrary JavaScript code, potentially altering functionality and leading to credentials disclosure within a trusted session. ...

5.4CVSS5.2AI score0.00495EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder