Vulnerabilities > IBM > Tririga Application Platform > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-07-21 | CVE-2017-1374 | Information Exposure vulnerability in IBM Tririga Application Platform Sensitive data can be exposed in the IBM TRIRIGA Application Platform 3.3, 3.4, and 3.5 that can lead to an attacker gaining unauthorized access to the system. | 6.5 |
| 2017-07-21 | CVE-2017-1372 | Cross-site Scripting vulnerability in IBM Tririga Application Platform IBM TRIRIGA Application Platform 3.3, 3.4, and 3.5 is vulnerable to cross-site scripting. | 5.4 |
| 2017-04-05 | CVE-2017-1180 | Unspecified vulnerability in IBM Tririga Application Platform The IBM TRIRIGA Document Manager contains a vulnerability that could allow an authenticated user to execute actions they did not have access to. | 5.3 |
| 2017-03-31 | CVE-2017-1171 | Unspecified vulnerability in IBM Tririga Application Platform The IBM TRIRIGA Application Platform 3.3, 3,4, and 3,5 contain a vulnerability that could allow an authenticated user to execute Application actions they do not have access to. | 4.3 |
| 2017-03-27 | CVE-2016-9737 | Cross-site Scripting vulnerability in IBM Tririga Application Platform IBM TRIRIGA 3.3, 3.4, and 3.5 is vulnerable to cross-site scripting. | 5.4 |
| 2017-02-01 | CVE-2016-6000 | Cross-site Scripting vulnerability in IBM Tririga Application Platform IBM TRIRIGA Application Platform is vulnerable to cross-site scripting. | 6.1 |
| 2017-02-01 | CVE-2016-5980 | Cross-site Scripting vulnerability in IBM Tririga Application Platform IBM TRIRIGA Application Platform is vulnerable to cross-site scripting. | 5.4 |
| 2016-07-02 | CVE-2016-2883 | Cross-site Scripting vulnerability in IBM Tririga Application Platform Cross-site scripting (XSS) vulnerability in IBM TRIRIGA Application Platform 3.3 before 3.3.2.6, 3.4 before 3.4.2.4, and 3.5 before 3.5.0.2 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL, a different vulnerability than CVE-2016-0387. | 5.4 |
| 2016-07-02 | CVE-2016-2882 | Information Exposure vulnerability in IBM Tririga Application Platform IBM TRIRIGA Application Platform 3.3 before 3.3.2.6, 3.4 before 3.4.2.4, and 3.5 before 3.5.0.2 allows remote authenticated users to obtain sensitive information by reading HTTP responses. | 4.3 |
| 2016-07-02 | CVE-2016-0387 | Cross-site Scripting vulnerability in IBM Tririga Application Platform Cross-site scripting (XSS) vulnerability in IBM TRIRIGA Application Platform 3.3 before 3.3.2.6, 3.4 before 3.4.2.4, and 3.5 before 3.5.0.2 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL, a different vulnerability than CVE-2016-2883. | 5.4 |