Vulnerabilities > IBM > Engineering Lifecycle Optimization Publishing > 2.1.2

DATE	CVE	VULNERABILITY TITLE	RISK
2019-01-04	CVE-2018-1951	Cross-site Scripting vulnerability in IBM Engineering Lifecycle Optimization - Publishing 2.1.2/6.0.5/6.0.6 IBM Publishing Engine 2.1.2, 6.0.5, and 6.0.6 is vulnerable to cross-site scripting. network low complexity ibm CWE-79	5.4
2019-01-04	CVE-2018-1657	Cross-site Scripting vulnerability in IBM Engineering Lifecycle Optimization - Publishing 2.1.2/6.0.5/6.0.6 IBM Publishing Engine 2.1.2, 6.0.5, and 6.0.6 is vulnerable to cross-site scripting. network low complexity ibm CWE-79	5.4
2018-03-02	CVE-2017-1787	Use of Hard-coded Credentials vulnerability in IBM Engineering Lifecycle Optimization - Publishing 2.1.2/6.0.5 IBM Publishing Engine 2.1.2 and 6.0.5 contains an undisclosed vulnerability that could allow a local user with administrative privileges to obtain hard coded user credentials. local low complexity ibm CWE-798	6.7

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.