11 matches found
IBM WebSphere Portal 7.0.0.x Unified Task List Portlet < 6.0.1 Multiple Vulnerabilities (PI18909)
The version of IBM WebSphere Portal on the remote host is affected by multiple vulnerabilities in the Unified Task List UTL portlet : - An unspecified open redirect vulnerability exists that allows a remote attacker to perform a phishing attack by enticing a user to click a malicious URL...
CVE-2014-3057
Cross-site scripting XSS vulnerability in the Unified Task List UTL Portlet for IBM WebSphere Portal 7.x and 8.x through 8.0.0.1 CF12 allows remote attackers to inject arbitrary web script or HTML via a crafted URL...
CVE-2014-3055
SQL injection vulnerability in the Unified Task List UTL Portlet for IBM WebSphere Portal 7.x and 8.x through 8.0.0.1 CF12 allows remote attackers to execute arbitrary SQL commands via unspecified vectors...
Open redirect
Multiple open redirect vulnerabilities in the Unified Task List UTL Portlet for IBM WebSphere Portal 7.x and 8.x through 8.0.0.1 CF12 allow remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors...
Cross site scripting
Cross-site scripting XSS vulnerability in the Unified Task List UTL Portlet for IBM WebSphere Portal 7.x and 8.x through 8.0.0.1 CF12 allows remote attackers to inject arbitrary web script or HTML via a crafted URL...
CVE-2014-3057
Cross-site scripting XSS vulnerability in the Unified Task List UTL Portlet for IBM WebSphere Portal 7.x and 8.x through 8.0.0.1 CF12 allows remote attackers to inject arbitrary web script or HTML via a crafted URL...
CVE-2014-3054
Multiple open redirect vulnerabilities in the Unified Task List UTL Portlet for IBM WebSphere Portal 7.x and 8.x through 8.0.0.1 CF12 allow remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors...
CVE-2014-3054
CVE-2014-3054 refers to multiple open redirects in the Unified Task List (UTL) Portlet of IBM WebSphere Portal 7.x and 8.x up to 8.0.0.1 CF12. The open redirect flaw could allow remote attackers to redirect users to arbitrary sites and potentially facilitate phishing via unspecified vectors. Conn...
CVE-2014-3057
The CVE-2014-3057 entry affects IBM WebSphere Portal 7.x and 8.x (up to 8.0.0.1 CF12) via the Unified Task List (UTL) Portlet. The vulnerability is a cross-site scripting (XSS) flaw that allows remote attackers to inject arbitrary web script or HTML through a crafted URL. Exploitation details, af...
CVE-2014-3055
CVE-2014-3055 is described in public sources as an SQL injection vulnerability in the Unified Task List Portlet of IBM WebSphere Portal 7.x and 8.x up to 8.0.0.1 CF12 . The vulnerability affects the portlet itself and allows remote attackers to execute arbitrary SQL commands via unspecified vecto...
CVE-2014-3056
CVE-2014-3056: Affected product is IBM WebSphere Portal Unified Task List (UTL) Portlet on WebSphere Portal 7.x and 8.x up to 8.0.0.1 CF12. The issue is information disclosure exposing environment variables and certain JAR versions via unspecified vectors. This is an information disclosure vulner...