Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
CaApi Developer Portal

3 matches found

CVE
CVEadded 2018/03/29 1:0 p.m.45 views

CVE-2018-6588

CVE-2018-6588 affects the CA API Developer Portal, specifically versions 3.5 up to and including 3.5 CR5. The vulnerability is a reflected cross-site scripting (XSS) flaw in the apiExplorer component, caused by improper handling of user-supplied HTML code, allowing an attacker to execute arbitrar...

6.1CVSS6AI score0.00233EPSS
CVE
CVEadded 2018/03/29 1:0 p.m.42 views

CVE-2018-6587

CA API Developer Portal versions 3.5 up to and including 3.5 CR6 are affected by a reflected cross-site scripting vulnerability in the widgetID variable. The root cause is insufficient filtering of user-submitted HTML code in the widgetID handling, enabling arbitrary script execution. CVSS metric...

6.1CVSS6AI score0.00233EPSS
CVE
CVEadded 2018/03/29 1:0 p.m.38 views

CVE-2018-6586

CA API Developer Portal 3.5 up to and including 3.5 CR6 contains a stored cross-site scripting vulnerability in profile picture handling due to insufficient input filtering. Impact is partial integrity loss via script execution in the context of the user viewing the affected portal. The CVE is co...

6.1CVSS5.9AI score0.00233EPSS