Vulnerabilities > IBM > Content Navigator

DATE CVE VULNERABILITY TITLE RISK
2023-11-03 CVE-2023-35896 Server-Side Request Forgery (SSRF) vulnerability in IBM Content Navigator 3.0.13
IBM Content Navigator 3.0.13 is vulnerable to server-side request forgery (SSRF).
network
low complexity
ibm CWE-918
5.4
5.4
2023-10-04 CVE-2023-40684 Cross-site Scripting vulnerability in IBM Content Navigator 3.0.11/3.0.13/3.0.14
IBM Content Navigator 3.0.11, 3.0.13, and 3.0.14 with IBM Daeja ViewOne Virtual is vulnerable to cross-site scripting.
network
low complexity
ibm CWE-79
5.4
5.4
2022-12-07 CVE-2022-43581 Missing Authorization vulnerability in IBM Content Navigator
IBM Content Navigator 3.0.0, 3.0.1, 3.0.2, 3.0.3, 3.0.4, 3.0.5, 3.0.6, 3.0.7, 3.0.8, 3.0.9, 3.0.10, 3.0.11, and 3.0.12 is vulnerable to missing authorization and could allow an authenticated user to load external plugins and execute code.
network
low complexity
ibm CWE-862
8.8
8.8
2021-08-09 CVE-2021-29714 Improper Input Validation vulnerability in IBM Content Navigator 3.0.0
IBM Content Navigator 3.0.CD could allow a malicious user to cause a denial of service due to improper input validation.
network
low complexity
ibm CWE-20
4.0
4.0
2021-04-27 CVE-2021-20549 Cross-site Scripting vulnerability in IBM Content Navigator 3.0.0
IBM Content Navigator 3.0.CD is vulnerable to cross-site scripting.
network
ibm CWE-79
3.5
3.5
2021-04-27 CVE-2021-20448 Cross-site Scripting vulnerability in IBM Content Navigator 3.0.0
IBM Content Navigator 3.0.CD is vulnerable to cross-site scripting.
network
ibm CWE-79
3.5
3.5
2021-04-27 CVE-2021-20550 Cross-site Scripting vulnerability in IBM Content Navigator 3.0.0
IBM Content Navigator 3.0.CD is vulnerable to cross-site scripting.
network
ibm CWE-79
3.5
3.5
2021-02-02 CVE-2020-4934 Path Traversal vulnerability in IBM Content Navigator 3.0.0
IBM Content Navigator 3.0.CD could allow a remote attacker to traverse directories on the system.
network
low complexity
ibm CWE-22
4.0
4.0
2020-12-21 CVE-2020-4757 Cross-site Scripting vulnerability in IBM Content Navigator 3.0.0
IBM FileNet Content Manager and IBM Content Navigator 3.0.CD is vulnerable to stored cross-site scripting.
network
low complexity
ibm CWE-79
6.4
6.4
2020-11-10 CVE-2020-4760 Cross-site Scripting vulnerability in IBM Content Navigator 3.0.0
IBM Content Navigator 3.0CD is vulnerable to cross-site scripting.
network
ibm CWE-79
4.3
4.3