Vulnerabilities > IBM > Sterling Partner Engagement Manager > 6.2.1.0

DATE CVE VULNERABILITY TITLE RISK
2023-06-08 CVE-2023-23480 Cross-site Scripting vulnerability in IBM Sterling Partner Engagement Manager
IBM Sterling Partner Engagement Manager 6.1, 6.2, and 6.2.1 is vulnerable to cross-site scripting.
network
low complexity
ibm CWE-79
5.4
5.4
2023-06-08 CVE-2023-23481 Cross-site Scripting vulnerability in IBM Sterling Partner Engagement Manager
IBM Sterling Partner Engagement Manager 6.1, 6.2, and 6.2.1 is vulnerable to stored cross-site scripting.
network
low complexity
ibm CWE-79
5.4
5.4
2023-06-08 CVE-2023-23482 Unspecified vulnerability in IBM Sterling Partner Engagement Manager
IBM Sterling Partner Engagement Manager 6.1, 6.2, and 6.2.1 could allow a remote attacker to hijack the clicking action of the victim.
network
low complexity
ibm
critical
 9.6
9.6
2022-09-23 CVE-2022-34348 XXE vulnerability in IBM Sterling Partner Engagement Manager 6.1/6.1.2/6.2.1.0
IBM Sterling Partner Engagement Manager 6.1 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data.
network
low complexity
ibm CWE-611
7.1
7.1