Lucene search
K

176 matches found

OSV
OSV
added 2016/09/26 4:59 a.m.4 views

CVE-2016-5946

Directory traversal vulnerability in IBM Spectrum Control formerly Tivoli Storage Productivity Center 5.2.x before 5.2.11 allows remote authenticated users to read arbitrary files via a .. dot dot in a URL...

6.5CVSS5.9AI score0.01633EPSS
Exploits0References3
NVD
NVD
added 2016/09/26 4:59 a.m.19 views

CVE-2016-5945

IBM Spectrum Control formerly Tivoli Storage Productivity Center 5.2.x before 5.2.11 allows remote authenticated users to upload non-executable files via a crafted HTTP request...

4.3CVSS4.3AI score0.01035EPSS
Exploits0References3
OSV
OSV
added 2016/09/26 4:59 a.m.5 views

CVE-2016-5945

IBM Spectrum Control formerly Tivoli Storage Productivity Center 5.2.x before 5.2.11 allows remote authenticated users to upload non-executable files via a crafted HTTP request...

4.3CVSS5.8AI score
Exploits0References3
NVD
NVD
added 2016/09/26 4:59 a.m.18 views

CVE-2016-5944

Cross-site scripting XSS vulnerability in the Web UI in IBM Spectrum Control formerly Tivoli Storage Productivity Center 5.2.x before 5.2.11 allows remote authenticated users to inject arbitrary web script or HTML via an embedded string...

5.4CVSS5.1AI score0.00816EPSS
Exploits0References3
OSV
OSV
added 2016/09/26 4:59 a.m.4 views

CVE-2016-5944

Cross-site scripting XSS vulnerability in the Web UI in IBM Spectrum Control formerly Tivoli Storage Productivity Center 5.2.x before 5.2.11 allows remote authenticated users to inject arbitrary web script or HTML via an embedded string...

5.4CVSS5.9AI score0.00816EPSS
Exploits0References3
OSV
OSV
added 2016/09/26 4:59 a.m.5 views

CVE-2016-5943

IBM Spectrum Control formerly Tivoli Storage Productivity Center 5.2.x before 5.2.11 allows remote authenticated users to bypass intended access restrictions, and read task details or edit properties, via unspecified vectors...

5.4CVSS5.8AI score0.00865EPSS
Exploits0References3
Prion
Prion
added 2016/09/26 4:59 a.m.19 views

Directory traversal

Directory traversal vulnerability in IBM Spectrum Control formerly Tivoli Storage Productivity Center 5.2.x before 5.2.11 allows remote authenticated users to read arbitrary files via a .. dot dot in a URL...

4CVSS6.5AI score0.01633EPSS
Exploits0References3Affected Software2
Prion
Prion
added 2016/09/26 4:59 a.m.14 views

Code injection

IBM Spectrum Control formerly Tivoli Storage Productivity Center 5.2.x before 5.2.11 allows remote authenticated users to conduct clickjacking attacks via a crafted web site...

3.5CVSS6.4AI score0.0085EPSS
Exploits0References3Affected Software2
Prion
Prion
added 2016/09/26 4:59 a.m.12 views

Cross site scripting

Cross-site scripting XSS vulnerability in the Web UI in IBM Spectrum Control formerly Tivoli Storage Productivity Center 5.2.x before 5.2.11 allows remote authenticated users to inject arbitrary web script or HTML via an embedded string...

3.5CVSS5.5AI score0.00816EPSS
Exploits0References3Affected Software2
Prion
Prion
added 2016/09/26 4:59 a.m.10 views

Cross site request forgery (csrf)

IBM Spectrum Control formerly Tivoli Storage Productivity Center 5.2.x before 5.2.11 allows remote authenticated users to upload non-executable files via a crafted HTTP request...

4CVSS6.5AI score0.01035EPSS
Exploits0References3Affected Software2
Prion
Prion
added 2016/09/26 4:59 a.m.14 views

Design/Logic Flaw

IBM Spectrum Control formerly Tivoli Storage Productivity Center 5.2.x before 5.2.11 allows remote authenticated users to bypass intended access restrictions, and read task details or edit properties, via unspecified vectors...

5.5CVSS6.4AI score0.00865EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2016/09/26 1:0 a.m.29 views

CVE-2016-5945

IBM Spectrum Control formerly Tivoli Storage Productivity Center 5.2.x before 5.2.11 allows remote authenticated users to upload non-executable files via a crafted HTTP request...

4.3AI score0.01035EPSS
Exploits0References3
Cvelist
Cvelist
added 2016/09/26 1:0 a.m.25 views

CVE-2016-5943

IBM Spectrum Control formerly Tivoli Storage Productivity Center 5.2.x before 5.2.11 allows remote authenticated users to bypass intended access restrictions, and read task details or edit properties, via unspecified vectors...

5AI score0.00865EPSS
Exploits0References3
Cvelist
Cvelist
added 2016/09/26 1:0 a.m.22 views

CVE-2016-5947

IBM Spectrum Control formerly Tivoli Storage Productivity Center 5.2.x before 5.2.11 allows remote authenticated users to conduct clickjacking attacks via a crafted web site...

5.2AI score0.0085EPSS
Exploits0References3
CVE
CVE
added 2016/09/26 1:0 a.m.47 views

CVE-2016-5946

CVE-2016-5946 affects IBM Spectrum Control (formerly Tivoli Storage Productivity Center). A directory traversal vulnerability allows remote authenticated users to read arbitrary files via a URL containing ".." (dot dot). Affected versions are Spectrum Control 5.2.8 through 5.2.10.1 and Tivoli Sto...

6.5CVSS5.9AI score0.01633EPSS
Exploits0References3Affected Software1
Symantec
Symantec
added 2016/06/07 12:0 a.m.47 views

Apache Struts CVE-2016-1181 Remote Code Execution Vulnerability

Description Apache Struts is prone to a remote code-execution vulnerability. Successfully exploiting this issue may allow an attacker to execute arbitrary code in the context of the affected application. Failed exploit attempts may cause a denial-of-service condition. Apache Struts 1.0 through...

6.8CVSS1AI score0.13122EPSS
Exploits0References1Affected Software28
Rows per page
Query Builder