Ibm

Content Navigator

40 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.4

CVE-2017-1522

  • EPSS 0.2%
  • Veröffentlicht 05.10.2017 17:29:00
  • Zuletzt bearbeitet 13.05.2026 00:24:29

IBM Content Navigator & CMIS 2.0.3, 3.0.0, and 3.0.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials d...

5.4

CVE-2017-1502

  • EPSS 0.23%
  • Veröffentlicht 07.09.2017 16:29:00
  • Zuletzt bearbeitet 13.05.2026 00:24:29

IBM Content Navigator & CMIS 2.0.3, 3.0.0, and 3.0.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials d...

5.4

CVE-2017-1331

  • EPSS 0.27%
  • Veröffentlicht 04.08.2017 16:29:00
  • Zuletzt bearbeitet 13.05.2026 00:24:29

IBM Content Navigator 2.0.3 and 3.0.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure withi...

5.4

CVE-2017-1282

  • EPSS 0.23%
  • Veröffentlicht 22.05.2017 20:29:00
  • Zuletzt bearbeitet 13.05.2026 00:24:29

IBM Content Navigator & CMIS 2.0 and 3.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure wi...

5.4

CVE-2017-1146

  • EPSS 0.23%
  • Veröffentlicht 20.03.2017 16:59:01
  • Zuletzt bearbeitet 13.05.2026 00:24:29

IBM Content Navigator 2.0.3 and 3.0.0 are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure with...

3.5

CVE-2015-1888

  • EPSS 0.17%
  • Veröffentlicht 03.10.2015 22:59:08
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Cross-site scripting (XSS) vulnerability in IBM Content Navigator 2.0.2 before 2.0.2-ICN-FP007 and 2.0.3 before 2.0.3-ICN-FP003, as used in Content Manager, FileNet Content Manager, Content Foundation, Content Manager OnDemand, and other products, al...

4.3

CVE-2014-8911

  • EPSS 0.24%
  • Veröffentlicht 14.02.2015 02:59:32
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Cross-site scripting (XSS) vulnerability in IBM Content Navigator 2.0.0 and 2.0.1 before 2.0.1.2 FP002 IF003 and 2.0.3 before 2.0.3.2 FP002 allows remote attackers to inject arbitrary web script or HTML via the Accept-Language HTTP header.

3.5

CVE-2014-0874

  • EPSS 0.19%
  • Veröffentlicht 28.02.2014 06:18:54
  • Zuletzt bearbeitet 29.04.2026 01:13:23

Cross-site scripting (XSS) vulnerability in IBM Content Navigator 2.x before 2.0.2.2-ICN-FP002 allows remote authenticated users to inject arbitrary web script or HTML via an unspecified parameter.

3.5

CVE-2014-0858

  • EPSS 0.14%
  • Veröffentlicht 27.02.2014 20:55:06
  • Zuletzt bearbeitet 29.04.2026 01:13:23

IBM Content Navigator 2.x before 2.0.2.2-ICN-FP002 allows remote authenticated users to bypass intended access restrictions and conduct deleteAction attacks via a modified URL.

4.3

CVE-2013-5462

  • EPSS 0.25%
  • Veröffentlicht 19.12.2013 22:55:04
  • Zuletzt bearbeitet 29.04.2026 01:13:23

IBM/ECMClient/configure/explodedformat/navigator/header.jsp in IBM Content Navigator 2.0.0, 2.0.1 before 2.0.1.2-ICN-FP002, and 2.0.2 before 2.0.2.1-ICN-FP001 allows remote attackers to conduct clickjacking attacks via vectors involving FRAME element...