Vulnerabilities > IBM > Financial Transaction Manager FOR Multiplatform
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-04-29 | CVE-2022-43871 | Cross-site Scripting vulnerability in IBM Financial Transaction Manager for Multiplatform 3.2.4 IBM Financial Transaction Manager for SWIFT Services 3.2.4 is vulnerable to cross-site scripting. | 5.4 |
| 2020-12-16 | CVE-2020-4908 | Information Exposure vulnerability in IBM Financial Transaction Manager for Multiplatform 3.2.4 IBM Financial Transaction Manager for SWIFT Services for Multiplatforms 3.2.4 returns the product version and release information on the login dialog. | 5.0 |
| 2020-12-16 | CVE-2020-4907 | Information Exposure Through an Error Message vulnerability in IBM Financial Transaction Manager for Multiplatform 3.2.4 IBM Financial Transaction Manager for SWIFT Services for Multiplatforms 3.2.4 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. | 5.0 |
| 2020-12-16 | CVE-2020-4906 | Insecure Storage of Sensitive Information vulnerability in IBM Financial Transaction Manager for Multiplatform 3.2.4 IBM Financial Transaction Manager for SWIFT Services for Multiplatforms 3.2.4 allows web pages to be stored locally which can be read by another user on the system. | 2.1 |
| 2020-12-16 | CVE-2020-4905 | Information Exposure vulnerability in IBM Financial Transaction Manager for Multiplatform 3.2.4 IBM Financial Transaction Manager for SWIFT Services for Multiplatforms 3.2.4 could allow an remote attacker to obtain sensitive information, caused by a man in the middle attack. | 4.3 |
| 2020-12-16 | CVE-2020-4904 | Cross-Site Request Forgery (CSRF) vulnerability in IBM Financial Transaction Manager for Multiplatform 3.2.4 IBM Financial Transaction Manager for SWIFT Services for Multiplatforms 3.2.4 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. | 4.3 |
| 2020-08-03 | CVE-2020-4328 | SQL Injection vulnerability in IBM Financial Transaction Manager FOR Multiplatform 3.2.4 IBM Financial Transaction Manager 3.2.4 is vulnerable to SQL injection. | 6.5 |
| 2019-12-20 | CVE-2019-4744 | Cross-site Scripting vulnerability in IBM Financial Transaction Manager FOR Multiplatform 3.0.0.0 IBM Financial Transaction Manager 3.0 is vulnerable to cross-site scripting. | 4.3 |
| 2019-12-20 | CVE-2019-4743 | Cleartext Transmission of Sensitive Information vulnerability in IBM Financial Transaction Manager FOR Multiplatform 3.0.0.0 IBM Financial Transaction Manager 3.0 does not set the secure attribute on authorization tokens or session cookies. | 4.3 |
| 2019-12-20 | CVE-2019-4742 | Improper Restriction of Rendered UI Layers or Frames vulnerability in IBM Financial Transaction Manager FOR Multiplatform 3.0.0.0 IBM Financial Transaction Manager 3.0 could allow a remote attacker to hijack the clicking action of the victim. | 4.3 |