Vulnerabilities > IBM > Websphere Process Server > 7.0.0.3

DATE CVE VULNERABILITY TITLE RISK
2018-03-30 CVE-2018-1384 Cross-site Scripting vulnerability in IBM products
IBM Business Process Manager 8.6 is vulnerable to cross-site scripting.
network
ibm CWE-79
3.5
3.5
2016-03-21 CVE-2015-7454 Permissions, Privileges, and Access Controls vulnerability in IBM Business Process Manager and Websphere Process Server
Business Space in IBM WebSphere Process Server 6.1.2.0 through 7.0.0.5 and Business Process Manager Advanced 7.5.x through 7.5.1.2, 8.0.x through 8.0.1.3, 8.5.0.x through 8.5.0.2, 8.5.5.x through 8.5.5.0, and 8.5.6.x through 8.5.6.2 allows remote authenticated users to bypass intended access restrictions and create an arbitrary page or space via unspecified vectors.
network
low complexity
ibm CWE-264
4.0
4.0