12 matches found
EUVD-2010-4771
Malware in sbrugna...
EUVD-2010-4772
Malware in sbrugna...
CVE-2010-4806
The authoring tool in IBM Web Content Manager WCM 6.1.5, and 7.0.0.1 before CF003, allows remote authenticated users to bypass intended access restrictions on draft creation by leveraging certain resource editor privileges...
CVE-2010-4807
Race condition in IBM Web Content Manager WCM 7.0.0.1 before CF003 allows remote authenticated users to cause a denial of service infinite recursive query via unspecified vectors, related to a StackOverflowError exception...
Acunetix Web Vulnerability Scanner Version 9 - Web Application Security Testing Tool
Acunetix W eb V ulnerability S canner WVS is an automated web application security testing tool that audits your web applications by checking for exploitable hacking vulnerabilities. Automated scans may be supplemented and cross-checked with the variety of manual tools to allow for comprehensive...
SEC Consult SA-20131227-0 :: IBM Web Content Manager (WCM) XPath Injection
SEC Consult Vulnerability Lab Security Advisory 20131227-0 ======================================================================= title: XPath Injection product: IBM Web Content Manager WCM vulnerable version: 6.x, 7.x, 8.x fixed version: - impact: high homepage: http://www.ibm.com/ found:...
IBM Web Content Manager information leakage
It's possible to obtain configuration data...
IBM Web Content Manager XPath Injection
SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: XPath Injection product: IBM Web Content Manager WCM vulnerable version: 6.x, 7.x, 8.x fixed version: - impact: high homepage: http://www.ibm.com/ found: 2013-10-27 CVE:...
CVE-2011-2754
Cross-site scripting XSS vulnerability in the PageBuilder2 aka Page Builder theme in IBM WebSphere Portal 7.x before 7.0.0.1 CF006, as used in IBM Web Content Manager WCM and other products, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2010-4807
Race condition in IBM Web Content Manager WCM 7.0.0.1 before CF003 allows remote authenticated users to cause a denial of service infinite recursive query via unspecified vectors, related to a StackOverflowError exception...
Design/Logic Flaw
The authoring tool in IBM Web Content Manager WCM 6.1.5, and 7.0.0.1 before CF003, allows remote authenticated users to bypass intended access restrictions on draft creation by leveraging certain resource editor privileges...
CVE-2010-4807
Race condition in IBM Web Content Manager WCM 7.0.0.1 before CF003 allows remote authenticated users to cause a denial of service infinite recursive query via unspecified vectors, related to a StackOverflowError exception...