CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

IBM Security Bulletins•added 2026/05/26 6:46 a.m.•10 views

Security Bulletin: IBM OpenPages is affected by multiple security vulnerabilities of DB2 Database Server (April 2026)

Summary IBM® Db2® Database Server is shipped as a supporting program of IBM OpenPages. Information about security vulnerabilities affecting IBM Db2 Database Server has been published in multiple security bulletins. Vulnerability Details Refer to the security bulletins listed in the...

5.8AI score

Exploits0Affected Software1

IBM Security Bulletins•added 2026/03/16 3:41 p.m.•7 views

Security Bulletin: Multiple security vulnerabilities in IBM SDK, Java Technology Edition Quarterly CPU - October 2025 affects IBM OpenPages

Summary IBM® SDK, Java™ Technology Edition is shipped as a supporting program of IBM OpenPages. Information about a security vulnerability affecting IBM SDK, Java Technology Edition Quarterly CPU - Oct 2025 has been published in multiple security bulletins. These products have addressed the...

7.5CVSS5.7AI score0.00633EPSS

Exploits0Affected Software1

NVD•added 2025/11/12 9:15 p.m.•8 views

CVE-2025-36223

IBM OpenPages 9.0 and 9.1 is vulnerable to HTTP header injection, caused by improper validation of input by the HOST headers. This could allow an attacker to conduct various attacks against the vulnerable system, including cross-site scripting, cache poisoning or session hijacking...

6.1CVSS0.00143EPSS

Exploits0References1

CNNVD•added 2025/11/12 12:0 a.m.•5 views

IBM OpenPages 安全漏洞

IBM OpenPages is an AI-driven, highly scalable Governance, Risk and Compliance GRC solution from International Business Machines IBM. A security vulnerability exists in IBM OpenPages versions 9.0 and 9.1, which stems from improper validation of the HOST header input and could lead to cross-site...

6.1CVSS6.3AI score0.00143EPSS

Exploits0References2

IBM Security Bulletins•added 2025/11/07 6:35 p.m.•5 views

Security Bulletin: HTML Injection Vulnerability in a Specific URL Endpoint of the IBM OpenPages Application

Summary A specific URL endpoint in IBM OpenPages was found to be vulnerable to unsanitized HTML injection. The application reflects user-supplied input directly into the HTML response without proper encoding or validation, which allows an attacker to inject arbitrary HTML content or tags...

5.4CVSS6.4AI score0.00162EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2025/11/06 7:37 a.m.•3 views

Security Bulletin: IBM OpenPages fixes multer package vulnerability (CVE-2025-7338)

Summary Vulnerability in the multer-2.0.1.tgz package with IBM OpenPages has been addressed in the latest IBM OpenPages fix pack version for 9.0 and 9.1 Vulnerability Details CVEID:CVE-2025-7338 DESCRIPTION: Multer is a node.js middleware for handling multipart/form-data. A vulnerability that is...

7.5CVSS6.7AI score0.00644EPSS

Exploits0Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by