7 matches found
CVE-2024-9174 Stored HTML Injection in Hubshare social module
Stored HTML Injection in Social Module in M-Files Hubshare before version 5.0.8.6 allows authenticated user to spoof UI...
PT-2024-39472 · M Files · M-Files Hubshare
Name of the Vulnerable Software and Affected Versions: M-Files Hubshare versions prior to 5.0.8.6 Description: The issue allows an authenticated user to spoof the UI through stored HTML injection in the Social Module. Recommendations: For versions prior to 5.0.8.6, update to version 5.0.8.6 or...
CVE-2019-4460
IBM API Connect 5.0.0.0 through 5.0.8.6 developer portal could allow a remote attacker to traverse directories on the system. An attacker could send a specially-crafted URL request containing "dot dot" sequences /../ to view arbitrary files on the system. IBM X-Force ID: 163681...
Security Bulletin: IBM API Connect V5 is impacted by multiple vulnerabilities in IBM Java SDK (CVE-2018-3139 CVE-2018-3180)
Summary There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Version 8 and IBM® Runtime Environment Java™ Version 8 used by IBM API Connect version 5. IBM API Connect has addressed the applicable CVEs. Vulnerability Details CVEID: CVE-2018-3139 DESCRIPTION: An unspecified...
IBM API Connect Information Disclosure Vulnerability (CNVD-2019-25511)
IBM API Connect APIConnect is a suite of integrated solutions for managing the API lifecycle from IBM USA. The product supports creating, running, managing, and securing APIs, microservices, and more. A vulnerability exists in IBM API Connect versions 5.0.0.0 through 5.0.8.6 for cryptographic...
IBM API Connect Information Disclosure Vulnerability (CNVD-2019-40899)
IBM API Connect APIConnect is a suite of integrated solutions for managing the API lifecycle from IBM USA. The product supports creating, running, managing, and securing APIs, microservices, and more. An information disclosure vulnerability exists in IBM API Connect versions 5.0.0.0 through...
Security Bulletin: API Connect V5 is impacted by information disclosure (CVE-2018-1991)
Summary IBM API Connect has addressed the following vulnerability. Vulnerability Details CVEID: CVE-2018-1991 DESCRIPTION: IBM API Connect could could return sensitive information that could provide critical information as to the underlying software stack in CMC UI headers. CVSS Base Score: 2.7...