Curam Social Program Management@6.1 Security Vulnerabilities and Issues — Curam Social Program Management@6.1 CVE List

Lucene search

IbmCuram Social Program Management6.1

6 matches found

CVE•added 2016/01/02 5:59 a.m.•39 views

CVE-2015-7402

Cross-site scripting (XSS) vulnerability in IBM Curam Social Program Management 6.1 before 6.1.1.1 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL.

5.4CVSS4.9AI score0.00168EPSS

CVE•added 2016/01/03 5:59 a.m.•35 views

CVE-2015-5023

SQL injection vulnerability in IBM Curam Social Program Management 6.1 before 6.1.1 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.

6.5CVSS5.9AI score0.00126EPSS

CVE•added 2017/04/20 9:59 p.m.•34 views

CVE-2016-9979

IBM Curam Social Program Management 5.2, 6.0, and 7.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ...

5.4CVSS5.2AI score0.00258EPSS

CVE•added 2017/04/20 9:59 p.m.•32 views

CVE-2016-9978

IBM Curam Social Program Management 5.2, 6.0, and 7.0 could allow an authenticated attacker to disclose sensitive information. IBM X-Force ID: 120254.

4.3CVSS4.2AI score0.00204EPSS

CVE•added 2017/04/20 9:59 p.m.•29 views

CVE-2016-8923

IBM Curam Social Program Management 5.2, 6.0, and 7.0 contains a vulnerability that would allow an authorized user to obtain sensitive information from the profile of a higher privileged user that they should not have access to. IBM X-Force ID: 118536.

4.3CVSS4.1AI score0.00203EPSS

CVE•added 2017/04/20 9:59 p.m.•29 views

CVE-2016-9980

5.4CVSS5.2AI score0.00228EPSS