NotCVE - vendor:"Ibm" product:"Security Identity Manager" version:" >= 6.0.0.0 <= 6.0.0.20"

Page 3 of 22 results (0.002 seconds)

CVSS: 6.1EPSS: 0%CPEs: 4EXPL: 0

CVE-2014-6096

https://notcve.org/view.php?id=CVE-2014-6096

18 Nov 2014 — Cross-site scripting (XSS) vulnerability in IBM Security Identity Manager 6.x before 6.0.0.3 IF14 allows remote attackers to inject arbitrary web script or HTML via a crafted URL. Una vulnerabilidad de XSS en IBM Security Identify Manager 6.x anterior a 6.0.0.3 IF4 permite a atacantes remotos inyectar secuencias de comkandos web o HTML arbitrarios a través de una URL manipulada. • http://secunia.com/advisories/62363 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 8.0EPSS: 0%CPEs: 22EXPL: 0

CVE-2014-0961

https://notcve.org/view.php?id=CVE-2014-0961

08 Jun 2014 — Cross-site request forgery (CSRF) vulnerability in IBM Tivoli Identity Manager (ITIM) 5.0 before 5.0.0.15 and 5.1 before 5.1.0.15 and IBM Security Identity Manager (ISIM) 6.0 before 6.0.0.2 allows remote authenticated users to hijack the authentication of arbitrary users for requests that insert XSS sequences. Vulnerabilidad de CSRF en IBM Tivoli Identity Manager (ITIM) 5.0 anterior a 5.0.0.15 y 5.1 anterior a 5.1.0.15 y IBM Security Identity Manager (ISIM) 6.0 anterior a 6.0.0.2 permite a usuarios remotos ... • http://secunia.com/advisories/59080 • CWE-352: Cross-Site Request Forgery (CSRF) •

1 2 3