Lucene search

K
IbmPlanning Analytics Local

8 matches found

CVE
CVE
added 2019/07/02 3:15 p.m.73 views

CVE-2019-4134

IBM Planning Analytics 2.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 158281.

6.1CVSS5.8AI score0.0029EPSS
CVE
CVE
added 2024/05/31 1:15 p.m.60 views

CVE-2024-31908

IBM Planning Analytics Local 2.0 and 2.1 is vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 28...

6.4CVSS5.8AI score0.00152EPSS
CVE
CVE
added 2020/06/02 2:15 p.m.43 views

CVE-2020-4503

IBM Planning Analytics Local 2.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 182283.

6.1CVSS6AI score0.00044EPSS
CVE
CVE
added 2025/06/01 12:15 p.m.43 views

CVE-2025-33004

IBM Planning Analytics Local 2.0 and 2.1 could allow a privileged user to delete files from directories due to improper pathname restriction.

6.5CVSS6.3AI score0.00203EPSS
CVE
CVE
added 2023/05/12 2:15 a.m.41 views

CVE-2023-28520

IBM Planning Analytics Local 2.0 is vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 250454.

6.4CVSS5.3AI score0.00135EPSS
CVE
CVE
added 2018/07/06 2:29 p.m.36 views

CVE-2018-1676

IBM Planning Analytics 2.0.0 through 2.0.4 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 145118.

6.1CVSS6AI score0.00166EPSS
CVE
CVE
added 2020/06/02 2:15 p.m.34 views

CVE-2020-4366

IBM Planning Analytics Local 2.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 178965.

6.1CVSS6AI score0.00247EPSS
CVE
CVE
added 2020/07/29 2:15 p.m.29 views

CVE-2020-4644

IBM Planning Analytics Local 2.0.0 through 2.0.9.1 could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to visit a malicious Web site, a remote attacker could exploit this vulnerability to hijack the victim's click actions and possibly launch further att...

6.1CVSS5.4AI score0.00339EPSS