Vulnerabilities > IBM > Curam Social Program Management > 6.0.4.6
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2017-03-31 | CVE-2016-6111 | XXE vulnerability in IBM Curam Social Program Management IBM Curam Social Program Management 6.0 and 7.0 are vulnerable to a denial of service, caused by an XML External Entity Injection (XXE) error when processing XML data. | 8.5 |
2015-01-10 | CVE-2014-3096 | Cross-site Scripting vulnerability in IBM Curam Social Program Management Cross-site scripting (XSS) vulnerability in IBM Curam Social Program Management before 6.0.5.5a allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL. | 3.5 |