Show filters
6 Total Results
Displaying 1-6 of 6
Sort by:
Attacker Value
Unknown

CVE-2016-8921

Disclosure Date: February 01, 2017 (last updated November 25, 2024)
IBM FileNet WorkPlace XT could allow a remote attacker to upload arbitrary files, which could allow the attacker to execute arbitrary code on the vulnerable server.
0
0
Attacker Value
Unknown

CVE-2016-3047

Disclosure Date: December 01, 2016 (last updated November 25, 2024)
Open redirect vulnerability in IBM FileNet Workplace 4.0.2 through 4.0.2.14 IF001 allows remote authenticated users to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.
0
0
Attacker Value
Unknown

CVE-2016-3055

Disclosure Date: December 01, 2016 (last updated November 25, 2024)
IBM FileNet Workplace 4.0.2 before 4.0.2.14 LA012 allows remote authenticated users to read arbitrary files or cause a denial of service (memory consumption) via an XML document containing an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue.
0
0
Attacker Value
Unknown

CVE-2016-5981

Disclosure Date: November 25, 2016 (last updated November 25, 2024)
Cross-site scripting (XSS) vulnerability in IBM FileNet Workplace XT through 1.1.5.2-WPXT-LA011 and FileNet Workplace (Application Engine) through 4.0.2.14-P8AE-IF001, when RegExpSecurityFilter and ScriptSecurityFilter are misconfigured, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
0
0
Attacker Value
Unknown

CVE-2016-3054

Disclosure Date: August 08, 2016 (last updated November 25, 2024)
Cross-site scripting (XSS) vulnerability in IBM FileNet Workplace 4.0.2 allows remote authenticated users to inject arbitrary web script or HTML by uploading a file.
0
0
Attacker Value
Unknown

CVE-2016-5878

Disclosure Date: August 08, 2016 (last updated November 25, 2024)
Open redirect vulnerability in IBM FileNet Workplace 4.0.2 before 4.0.2.14 allows remote authenticated users to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.
0
0