Websphere Commerce Security Vulnerabilities and Issues — Websphere Commerce CVE List

Lucene search

IbmWebsphere Commerce

2 matches found

CVE•added 2010/11/09 9:0 p.m.•38 views

CVE-2010-2635

SQL injection vulnerability in IBM WebSphere Commerce 6.0 before 6.0.0.10 allows remote authenticated users to execute arbitrary SQL commands via unspecified parameters to "Commerce Organization Admin Console JavaServer pages."

6.5CVSS8AI score0.0022EPSS

CVE•added 2010/11/09 9:0 p.m.•30 views

CVE-2010-2636

Multiple cross-site scripting (XSS) vulnerabilities in sample store pages in IBM WebSphere Commerce 7.0 before 7.0.0.1 allow remote attackers to inject arbitrary web script or HTML via a crafted URL.

4.3CVSS5.6AI score0.00202EPSS