Vulnerabilities > CA > API Developer Portal > Medium

DATE CVE VULNERABILITY TITLE RISK
2018-03-29 CVE-2018-6588 Cross-site Scripting vulnerability in CA API Developer Portal 3.5
CA API Developer Portal 3.5 up to and including 3.5 CR5 has a reflected cross-site scripting vulnerability related to the apiExplorer.
network
low complexity
ca CWE-79
6.1
6.1
2018-03-29 CVE-2018-6587 Cross-site Scripting vulnerability in CA API Developer Portal 3.5
CA API Developer Portal 3.5 up to and including 3.5 CR6 has a reflected cross-site scripting vulnerability related to the widgetID variable.
network
low complexity
ca CWE-79
6.1
6.1
2018-03-29 CVE-2018-6586 Cross-site Scripting vulnerability in CA API Developer Portal 3.5
CA API Developer Portal 3.5 up to and including 3.5 CR6 has a stored cross-site scripting vulnerability related to profile picture processing.
network
low complexity
ca CWE-79
6.1
6.1