CVE-2025-15051

IBM QRadar SIEM is vulnerable to cross-site scripting (CVE-2025-15051). The IBM bulletin states QRadar SIEM 7.5.0 UP14 IF05 is affected and that an attacker could embed arbitrary JavaScript in the Web UI, potentially altering functionality. The CVSS base score is 5.4 (Vector: CVSS:3.1/AV:N/AC:L/P...

IBM QRadar SIEM 跨站脚本漏洞

IBM QRadar SIEM is a solution developed by the American multinational company IBM, designed to protect assets and information from advanced threats using security intelligence. This solution provides features such as monitoring across the entire IT infrastructure and generating detailed reports o...

IBM QRadar SIEM 安全漏洞

IBM QRadar SIEM is a solution developed by the American multinational company IBM, designed to protect assets and information from advanced threats using security intelligence. This solution provides features such as monitoring across the entire IT infrastructure and generating detailed reports o...

Security Bulletin: IBM QRadar SIEM is affected by cross-site scripting (CVE-2025-36170, CVE-2025-36138)

Summary IBM QRadar SIEM is affected by cross-site scripting . IBM has addressed the issue in the latest update. Vulnerability Details CVEID:CVE-2025-36170 DESCRIPTION: IBM QRadar is vulnerable to stored cross-site scripting. This vulnerability allows an authenticated user to embed arbitrary...

RTI Connext Professional 安全漏洞

RTI Connext Professional is a connectivity platform from RTI USA designed to meet the demanding requirements of the Industrial Internet of Things IIoT. A security vulnerability exists in RTI Connext Professional versions 7.5.0 through prior to 7.6.0, which stems from a post-release reuse issue th...

CVE-2025-21544

Vulnerability in the Oracle Communications Order and Service Management product of Oracle Communications Applications component: Security. Supported versions that are affected are 7.4.0, 7.4.1 and 7.5.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP ...

CVE-2023-37488

In SAP NetWeaver Process Integration - versions SAPXIESR 7.50, SAPXITOOL 7.50, SAPXIAF 7.50, user-controlled inputs, if not sufficiently encoded, could result in Cross-Site Scripting XSS attack. On successful exploitation the attacker can cause limited impact on confidentiality and integrity of t...

PT-2023-5200 · Ibm · Ibm Qradar Siem

Name of the Vulnerable Software and Affected Versions: IBM QRadar SIEM version 7.5.0 Description: The issue is related to the use of weaker than expected cryptographic algorithms, which could allow an attacker to decrypt highly sensitive information. This could potentially enable a remote attacke...

Mahavitaran安全漏洞

Mahavitaran, an official application of Maharashtra State Electricity Distribution, India, is vulnerable to an authorization issue in version 7.50 and earlier, which stems from a software writing issue where usernames and passwords are stored in plaintext and can be read by a local attacker. A...

Atlassian Confluence Server 安全漏洞

Atlassian Confluence Server is the server version of a suite of collaboration software from Atlassian Australia with enterprise knowledge management capabilities and support for building enterprise WiKi. A security vulnerability exists in Atlassian Confluence Server that allows remote attackers t...

CLSA-2021-1617285762 Fix of CVE-2021-22876

back-port urlapi from v7.75.0 used by CVE-2021-22876 - strip credentials from the auto-referer header CVE-2021-22876...

Atlassian Confluence Server and Data Center Cross-Site Scripting Vulnerability

Atlassian Confluence Server is the server version of Atlassian Australia's suite of collaboration software with enterprise knowledge management capabilities and support for building enterprise WiKi.Atlassian Confluence Data Center is the data center version of Atlassian Confluence. Atlassian...

CVE-2020-14175

Affected versions of Atlassian Confluence Server and Data Center allow remote attackers to inject arbitrary HTML or JavaScript via a Cross-Site Scripting XSS vulnerability in user macro parameters. The affected versions are before version 7.4.2, and from version 7.5.0 before 7.5.2...

CVE-2018-5926

A potential vulnerability has been identified in HP Remote Graphics Software’s certificate authentication process version 7.5.0 and earlier...

HP Version Control Repository Manager Buffer Overflow Vulnerability

HP Version Control Repository Manager is a set of version control repository management products from Hewlett-Packard HP. A buffer overflow vulnerability exists in HP Version Control Repository Manager versions prior to 7.5.0. This could allow an authenticated remote user to modify data via...