Vulnerabilities > IBM > Emptoris Sourcing > 10.0.4

DATE CVE VULNERABILITY TITLE RISK
2018-02-02 CVE-2016-0329 Open Redirect vulnerability in IBM Emptoris Sourcing
Open redirect vulnerability in IBM Emptoris Sourcing 10.0.0.x before 10.0.0.1_iFix3, 10.0.1.x before 10.0.1.3_iFix3, 10.0.2.x before 10.0.2.8_iFix1, 10.0.4.0 before 10.0.4.0_iFix8, and 10.1.0.0 before 10.1.0.0_iFix3 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.
network
low complexity
ibm CWE-601
5.4
5.4
2017-08-31 CVE-2017-1450 Open Redirect vulnerability in IBM Emptoris Sourcing
IBM Emptoris Sourcing 9.5 - 10.1.3 could allow a remote attacker to conduct phishing attacks, using an open redirect attack.
network
low complexity
ibm CWE-601
6.1
6.1
2017-08-31 CVE-2017-1449 Open Redirect vulnerability in IBM Emptoris Sourcing
IBM Emptoris Sourcing 9.5 - 10.1.3 could allow a remote attacker to conduct phishing attacks, using an open redirect attack.
network
low complexity
ibm CWE-601
5.4
5.4
2017-08-31 CVE-2017-1447 Cross-site Scripting vulnerability in IBM Emptoris Sourcing
IBM Emptoris Sourcing 9.5 - 10.1.3 is vulnerable to cross-site scripting.
network
low complexity
ibm CWE-79
5.4
5.4
2017-08-31 CVE-2017-1444 Cross-site Scripting vulnerability in IBM Emptoris Sourcing
IBM Emptoris Sourcing 9.5 - 10.1.3 is vulnerable to cross-site scripting.
network
low complexity
ibm CWE-79
5.4
5.4
2017-07-12 CVE-2016-8953 Open Redirect vulnerability in IBM Emptoris Sourcing
IBM Emptoris Sourcing 9.5.x through 10.1.x could allow a remote attacker to conduct phishing attacks, using an open redirect attack.
network
low complexity
ibm CWE-601
5.4
5.4
2017-07-12 CVE-2016-8950 Cross-site Scripting vulnerability in IBM Emptoris Sourcing
IBM Emptoris Sourcing 9.5.x through 10.1.x is vulnerable to cross-site scripting.
network
low complexity
ibm CWE-79
5.4
5.4
2017-07-12 CVE-2016-8948 Cross-site Scripting vulnerability in IBM Emptoris Sourcing
IBM Emptoris Sourcing 9.5.x through 10.1.x is vulnerable to cross-site scripting.
network
low complexity
ibm CWE-79
5.4
5.4
2017-07-12 CVE-2016-8947 Open Redirect vulnerability in IBM Emptoris Sourcing
IBM Emptoris Sourcing 9.5.x through 10.1.x could allow a remote attacker to conduct phishing attacks, using an open redirect attack.
network
low complexity
ibm CWE-601
6.1
6.1
2017-07-12 CVE-2016-8946 Cross-site Scripting vulnerability in IBM Emptoris Sourcing
IBM Emptoris Sourcing 9.5.x through 10.1.x is vulnerable to cross-site scripting.
network
low complexity
ibm CWE-79
5.4
5.4