Websphere Portal Security Vulnerabilities and Issues — Websphere Portal CVE List

Lucene search

IbmWebsphere Portal

4 matches found

CVE•added 2011/05/26 4:55 p.m.•41 views

CVE-2011-2172

Cross-site scripting (XSS) vulnerability in the search center in IBM WebSphere Portal 7.0.0.1 before CF004 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

4.3CVSS5.7AI score0.00427EPSS

CVE•added 2011/05/26 4:55 p.m.•36 views

CVE-2011-2173

The implementation of OutputMediator objects in IBM WebSphere Portal 6.0.1.7, and 7.0.0.1 before CF002, allows remote authenticated users to cause a denial of service (memory consumption) via requests.

4CVSS6.3AI score0.00374EPSS

CVE•added 2011/01/28 9:0 p.m.•32 views

CVE-2011-0679

IBM WebSphere Portal 6.0.1.1 through 7.0.0.0, as used in IBM Lotus Web Content Management (WCM) and IBM Lotus Quickr for WebSphere Portal, allows remote attackers to obtain sensitive information via a "modified message."

5CVSS6.2AI score0.02558EPSS

CVE•added 2011/07/17 8:55 p.m.•32 views

CVE-2011-2754

Cross-site scripting (XSS) vulnerability in the PageBuilder2 (aka Page Builder) theme in IBM WebSphere Portal 7.x before 7.0.0.1 CF006, as used in IBM Web Content Manager (WCM) and other products, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

4.3CVSS5.7AI score0.00236EPSS