|
271
|
4.3 |
MEDIUM
Network
|
-
|
-
|
IBM ApplinX 11.1 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts.
New
|
CWE-352
Origin Validation Error
|
CVE-2024-49795
|
2025-02-6 09:15 |
2025-02-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272
|
4.3 |
MEDIUM
Network
|
-
|
-
|
IBM ApplinX 11.1 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts.
New
|
CWE-352
Origin Validation Error
|
CVE-2024-49794
|
2025-02-6 09:15 |
2025-02-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273
|
5.4 |
MEDIUM
Network
|
-
|
-
|
IBM ApplinX 11.1 is vulnerable to cross-site scripting. This vulnerability allows an authenticated user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality poten…
New
|
CWE-79
Cross-site Scripting
|
CVE-2024-49793
|
2025-02-6 09:15 |
2025-02-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274
|
5.4 |
MEDIUM
Network
|
-
|
-
|
IBM ApplinX 11.1 is vulnerable to cross-site scripting. This vulnerability allows an authenticated user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality poten…
New
|
CWE-79
Cross-site Scripting
|
CVE-2024-49792
|
2025-02-6 09:15 |
2025-02-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
275
|
6.4 |
MEDIUM
Network
|
-
|
-
|
IBM ApplinX 11.1 is vulnerable to cross-site scripting. This vulnerability allows an authenticated user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality poten…
New
|
CWE-79
Cross-site Scripting
|
CVE-2024-49791
|
2025-02-6 09:15 |
2025-02-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276
|
5.3 |
MEDIUM
Network
-
|
-
|
IBM Aspera Shares 1.9.0 through 1.10.0 PL6 could allow an attacker to spoof their IP address, which is written to log files, due to improper verification of 'Client-IP' headers.
New
|
CWE-117
Improper Output Neutralization for Logs
|
CVE-2024-56473
|
2025-02-6 08:15 |
2025-02-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
277
|
6.4 |
MEDIUM
Network
|
-
|
-
|
IBM Aspera Shares 1.9.0 through 1.10.0 PL6 is vulnerable to stored cross-site scripting. This vulnerability allows authenticated users to embed arbitrary JavaScript code in the Web UI thus altering …
New
|
CWE-79
Cross-site Scripting
|
CVE-2024-56472
|
2025-02-6 08:15 |
2025-02-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278
|
5.4 |
MEDIUM
Network
|
-
|
-
|
IBM Aspera Shares 1.9.0 through 1.10.0 PL6 is vulnerable to server-side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentially le…
New
|
CWE-918
Server-Side Request Forgery (SSRF)
|
CVE-2024-56471
|
2025-02-6 08:15 |
2025-02-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279
|
5.4 |
MEDIUM
Network
|
-
|
-
|
IBM Aspera Shares 1.9.0 through 1.10.0 PL6 is vulnerable to server-side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentially le…
New
|
CWE-918
Server-Side Request Forgery (SSRF)
|
CVE-2024-56470
|
2025-02-6 08:15 |
2025-02-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280
|
4.8 |
MEDIUM
Network
|
-
|
-
|
IBM Aspera Shares 1.9.0 through 1.10.0 PL6 is vulnerable to HTML injection. A remote attacker could inject malicious HTML code, which when viewed, would be executed in the victim's Web browser within…
New
|
CWE-80
Basic XSS
|
CVE-2024-38318
|
2025-02-6 08:15 |
2025-02-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
