Vulnerabilities > IBM > Marketing Operations > 9.1.0.4

DATE CVE VULNERABILITY TITLE RISK
2018-11-09 CVE-2017-1119 Information Exposure vulnerability in IBM Marketing Operations
IBM Marketing Operations 9.1.0, 9.1.2, and 10.1 could allow a remote attacker to obtain sensitive information.
network
low complexity
ibm CWE-200
4.0
4.0
2015-06-07 CVE-2014-8887 Improper Input Validation vulnerability in IBM Marketing Operations
IBM Marketing Operations 7.x and 8.x before 8.5.0.7.2, 8.6.x before 8.6.0.8, 9.0.x before 9.0.0.4.1, 9.1.0.x before 9.1.0.5, and 9.1.1.x before 9.1.1.2 allows remote authenticated users to upload arbitrary GIFAR files, and consequently modify data, via unspecified vectors.
network
low complexity
ibm CWE-20
4.0
4.0
2015-06-07 CVE-2014-6222 Path Traversal vulnerability in IBM Marketing Operations
Directory traversal vulnerability in IBM Marketing Operations 7.x and 8.x before 8.5.0.7.2, 8.6.x before 8.6.0.8, 9.0.x before 9.0.0.4.1, 9.1.0.x before 9.1.0.5, and 9.1.1.x before 9.1.1.2 allows remote authenticated users to read arbitrary files via a ..
network
low complexity
ibm CWE-22
4.0
4.0
2015-06-07 CVE-2014-6175 Cross-site Scripting vulnerability in IBM Marketing Operations
Cross-site scripting (XSS) vulnerability in IBM Marketing Operations 7.x and 8.x before 8.5.0.7.2, 8.6.x before 8.6.0.8, 9.0.x before 9.0.0.4.1, 9.1.0.x before 9.1.0.5, and 9.1.1.x before 9.1.1.2 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
network
ibm CWE-79
3.5
3.5