IBM BigFix Server 9.2.x < 9.2.7.53 BES Gather XSS

According to its self-reported version, the IBM BigFix Server running on the remote host is version 9.2.x prior to 9.2.7.53. It is, therefore, affected by a reflected cross-site scripting XSS vulnerability that exists in the BES gather function due to improper validation of input before returning...

Code injection

The SSL client implementation in BEA WebLogic Server 7.0 SP7, 8.1 SP2 through SP6, 9.0, 9.1, 9.2 Gold through MP2, and 10.0 sometimes selects the null cipher when others are available, which might allow remote attackers to intercept communications...