EUVD-2023-55690

Malicious code in bioql PyPI...

EUVD-2025-31577

Malicious code in bioql PyPI...

EUVD-2022-41705

Malicious code in bioql PyPI...

EUVD-2022-49553

Malicious code in bioql PyPI...

EUVD-2022-44021

Malicious code in bioql PyPI...

EUVD-2023-46473

Malicious code in bioql PyPI...

EUVD-2022-37313

Malicious code in bioql PyPI...

EUVD-2024-42784

Malicious code in bioql PyPI...

EUVD-2021-7779

Malicious code in bioql PyPI...

EUVD-2022-37291

Malicious code in bioql PyPI...

EUVD-2024-43571

Malicious code in bioql PyPI...

IBM Watson Studio Cross-Site Scripting Vulnerability

IBM Watson Studio is a data science and machine learning platform from IBM, integrated into Cloud Pak for Data, for building, training and deploying AI models. A cross-site scripting vulnerability exists in IBM Watson Studio versions 4.0 through 5.2.0 that stems from not adequately filtering user...

IBM WebSphere Application Server Liberty 17.0.0.3 < 25.0.0.8 Stored Cross-Site Scripting (7242026)

The version of IBM WebSphere Application Server Liberty running on the remote host is affected by a stored cross-site scripting vulnerability as referenced in the 7242026 advisory: - IBM WebSphere Application Server Liberty 17.0.0.3 through 25.0.0.8 is vulnerable to stored cross-site scripting...

CVE-2024-43184

IBM Jazz Foundation 7.0.2 through 7.0.2 iFix033, 7.0.3 through 7.0.3 iFix012, and 7.1.0 through 7.1.0 iFix002 is vulnerable to cross-site scripting. This vulnerability allows an unauthenticated attacker to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality...

CVE-2025-2694

IBM Sterling B2B Integrator 6.0.0.0 through 6.1.2.71 and 6.2.0.0 through 6.2.0.4 and IBM Sterling File Gateway 6.0.0.0 through 6.1.2.71 and 6.2.0.0 through 6.2.0.4 is vulnerable to cross-site scripting. This vulnerability allows a privileged user to embed arbitrary JavaScript code in the Web UI...

CVE-2025-0656

IBM Concert Software 1.0.0 through 1.1.0 is vulnerable to cross-site scripting. This vulnerability allows an unauthenticated user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session...

CVE-2025-36042

IBM QRadar SIEM versions 7.5 through 7.5.0 Dashboard are vulnerable to cross-site scripting (CVE-2025-36042). An authenticated user can embed arbitrary JavaScript in the Web UI, potentially altering functionality and disclosing credentials within a trusted session. The issue is tied to the Dashbo...

CVE-2025-33008

IBM Sterling B2B Integrator 6.2.1.0 and IBM Sterling File Gateway 6.2.1.0 is vulnerable to cross-site scripting. This vulnerability allows an authenticated user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure...

CVE-2025-36088 IBM TS4500 cross-site scripting

IBM TS4500 1.11.0.0-D00, 1.11.0.1-C00, 1.11.0.2-C00, and 1.10.00-F00 web GUI is vulnerable to cross-site scripting. This vulnerability allows an authenticated user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosu...

CVE-2024-52900

CVE-2024-52900 affects IBM Cognos Analytics 11.2.0–11.2.4 IF5 and 12.0.0–12.0.4, with a stored cross-site scripting vulnerability in the Web UI allowing authenticated users to embed arbitrary JavaScript and potentially disclose credentials. The issue arises in the web interface’s handling of inpu...