Lucene search
K

13 matches found

RedhatCVE
RedhatCVE
added 2026/02/18 7:30 p.m.6 views

CVE-2025-36018

IBM Concert 1.0.0 through 2.1.0 for Z hub component is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts...

6.5CVSS5.4AI score0.00112EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/02/18 7:30 p.m.5 views

CVE-2025-36019

IBM Concert 1.0.0 through 2.1.0 for Z hub framework is vulnerable to cross-site scripting. This vulnerability allows an unauthenticated attacker to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted...

6.1CVSS5.1AI score0.00162EPSS
Exploits0References1
OSV
OSV
added 2026/02/17 7:21 p.m.4 views

CVE-2025-36019

IBM Concert 1.0.0 through 2.1.0 for Z hub framework is vulnerable to cross-site scripting. This vulnerability allows an unauthenticated attacker to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted...

6.1CVSS5.2AI score
Exploits0References1
NVD
NVD
added 2026/02/17 7:21 p.m.7 views

CVE-2025-36019

IBM Concert 1.0.0 through 2.1.0 for Z hub framework is vulnerable to cross-site scripting. This vulnerability allows an unauthenticated attacker to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted...

6.1CVSS0.00162EPSS
Exploits0References1
NVD
NVD
added 2026/02/17 7:21 p.m.6 views

CVE-2025-36018

IBM Concert 1.0.0 through 2.1.0 for Z hub component is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts...

6.5CVSS0.00112EPSS
Exploits0References1
CVE
CVE
added 2026/02/17 6:54 p.m.13 views

CVE-2025-36018

CVE-2025-36018 affects IBM Concert, Z hub component versions 1.0.0 through 2.1.0. The Red Hat/NVD entries confirm a cross-site request forgery (CSRF) vulnerability that could enable an attacker to perform malicious/untrusted actions via a trusted user. No exploitation details are provided in the ...

6.5CVSS7.3AI score0.00112EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2026/02/17 6:54 p.m.26 views

CVE-2025-36018 Multiple Vulnerabilities in IBM Concert Software.

IBM Concert 1.0.0 through 2.1.0 for Z hub component is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts...

6.5CVSS0.00112EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/02/17 6:54 p.m.4 views

CVE-2025-36018 Multiple Vulnerabilities in IBM Concert Software.

IBM Concert 1.0.0 through 2.1.0 for Z hub component is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts...

6.5CVSS5.7AI score0.00112EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/02/17 6:54 p.m.4 views

CVE-2025-36018

IBM Concert 1.0.0 through 2.1.0 for Z hub component is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts...

6.5CVSS5.4AI score0.00112EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/02/17 6:53 p.m.13 views

CVE-2025-36019

IBM Concert Z hub framework (versions 1.0.0 through 2.1.0) is affected by a cross-site scripting vulnerability enabling an unauthenticated attacker to inject arbitrary JavaScript into the Web UI, potentially leading to credentials disclosure within a trusted session. Remediation recommended in PT...

6.1CVSS6.9AI score0.00162EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2026/02/17 6:53 p.m.27 views

CVE-2025-36019 Multiple Vulnerabilities in IBM Concert Software.

IBM Concert 1.0.0 through 2.1.0 for Z hub framework is vulnerable to cross-site scripting. This vulnerability allows an unauthenticated attacker to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted...

6.1CVSS0.00162EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/02/17 6:53 p.m.4 views

CVE-2025-36019 Multiple Vulnerabilities in IBM Concert Software.

IBM Concert 1.0.0 through 2.1.0 for Z hub framework is vulnerable to cross-site scripting. This vulnerability allows an unauthenticated attacker to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted...

6.1CVSS6.9AI score0.00162EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/02/17 12:0 a.m.5 views

PT-2026-20244

Name of the Vulnerable Software and Affected Versions IBM Concert versions 1.0.0 through 2.1.0 Description The software is susceptible to cross-site request forgery, potentially enabling an attacker to perform unauthorized actions on behalf of a trusted user. The affected component is the Z hub...

6.5CVSS5.2AI score0.00112EPSS
Exploits0References4
Rows per page
Query Builder