Show filters
22 Total Results
Displaying 11-20 of 22
Sort by:
Attacker Value
Unknown
CVE-2017-1373
Disclosure Date: July 21, 2017 (last updated November 26, 2024)
Reports executed in the IBM TRIRIGA Application Platform 3.3, 3.4, and 3.5 contains a vulnerability that could allow an authenticated user to execute a report they do not have access to. IBM X-Force ID: 126866.
0
Attacker Value
Unknown
CVE-2017-1180
Disclosure Date: April 05, 2017 (last updated November 26, 2024)
The IBM TRIRIGA Document Manager contains a vulnerability that could allow an authenticated user to execute actions they did not have access to. IBM Reference #: 2001084.
0
Attacker Value
Unknown
CVE-2017-1171
Disclosure Date: March 31, 2017 (last updated November 26, 2024)
The IBM TRIRIGA Application Platform 3.3, 3,4, and 3,5 contain a vulnerability that could allow an authenticated user to execute Application actions they do not have access to. IBM Reference #: 2001083.
0
Attacker Value
Unknown
CVE-2017-1153
Disclosure Date: March 27, 2017 (last updated November 26, 2024)
IBM TRIRIGA Report Manager 3.2 through 3.5 contains a vulnerability that could allow an authenticated user to execute actions that they do not have access to. IBM Reference #: 1999563.
0
Attacker Value
Unknown
CVE-2016-5980
Disclosure Date: February 01, 2017 (last updated November 25, 2024)
IBM TRIRIGA Application Platform is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.
0
Attacker Value
Unknown
CVE-2016-6000
Disclosure Date: February 01, 2017 (last updated November 25, 2024)
IBM TRIRIGA Application Platform is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.
0
Attacker Value
Unknown
CVE-2016-2882
Disclosure Date: July 02, 2016 (last updated November 25, 2024)
IBM TRIRIGA Application Platform 3.3 before 3.3.2.6, 3.4 before 3.4.2.4, and 3.5 before 3.5.0.2 allows remote authenticated users to obtain sensitive information by reading HTTP responses.
0
Attacker Value
Unknown
CVE-2016-0386
Disclosure Date: July 02, 2016 (last updated November 25, 2024)
Cross-site request forgery (CSRF) vulnerability in IBM TRIRIGA Application Platform 3.3 before 3.3.2.6, 3.4 before 3.4.2.4, and 3.5 before 3.5.0.2 allows remote authenticated users to hijack the authentication of administrators for requests that delete employees.
0
Attacker Value
Unknown
CVE-2016-0387
Disclosure Date: July 02, 2016 (last updated November 25, 2024)
Cross-site scripting (XSS) vulnerability in IBM TRIRIGA Application Platform 3.3 before 3.3.2.6, 3.4 before 3.4.2.4, and 3.5 before 3.5.0.2 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL, a different vulnerability than CVE-2016-2883.
0
Attacker Value
Unknown
CVE-2016-2883
Disclosure Date: July 02, 2016 (last updated November 25, 2024)
Cross-site scripting (XSS) vulnerability in IBM TRIRIGA Application Platform 3.3 before 3.3.2.6, 3.4 before 3.4.2.4, and 3.5 before 3.5.0.2 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL, a different vulnerability than CVE-2016-0387.
0
