Vulnerabilities > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-03-28 | CVE-2016-9129 | Information Exposure vulnerability in Revive-Adserver Revive Adserver Revive Adserver before 3.2.3 suffers from Information Exposure Through Discrepancy. | 5.3 |
| 2017-03-28 | CVE-2016-9128 | Cross-site Scripting vulnerability in Revive-Adserver Revive Adserver Revive Adserver before 3.2.3 suffers from reflected XSS. | 5.4 |
| 2017-03-28 | CVE-2016-9126 | Cross-site Scripting vulnerability in Revive-Adserver Revive Adserver Revive Adserver before 3.2.3 suffers from persistent XSS. | 5.4 |
| 2017-03-27 | CVE-2017-1143 | Information Exposure vulnerability in IBM Kenexa Lcms Premier IBM Kenexa LCMS Premier on Cloud 9.x and 10.0 could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. | 5.3 |
| 2017-03-27 | CVE-2017-1142 | Information Exposure vulnerability in IBM Kenexa Lcms Premier IBM Kenexa LCMS Premier on Cloud 9.x and 10.0 could allow a remote attacker to obtain sensitive information, caused by the failure to set the secure flag for the session cookie in SSL mode. | 6.5 |
| 2017-03-27 | CVE-2017-1120 | Cross-site Scripting vulnerability in IBM Websphere Portal 8.5/9.0 IBM WebSphere Portal 8.5 and 9.0 is vulnerable to cross-site scripting. | 6.1 |
| 2017-03-27 | CVE-2016-9737 | Cross-site Scripting vulnerability in IBM Tririga Application Platform IBM TRIRIGA 3.3, 3.4, and 3.5 is vulnerable to cross-site scripting. | 5.4 |
| 2017-03-27 | CVE-2016-6056 | Cross-site Scripting vulnerability in IBM Call Center for Commerce 9.3/9.4 IBM Call Center for Commerce 9.3 and 9.4 is vulnerable to cross-site scripting. | 5.4 |
| 2017-03-27 | CVE-2017-5238 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Eviewgps Ev-07S GPS Tracker Firmware Due to a lack of bounds checking, several input configuration fields for the Eview EV-07S GPS Tracker will overflow data stored in one variable to another, overwriting the data of another field. | 5.3 |
| 2017-03-27 | CVE-2017-7275 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Imagemagick 7.0.49 The ReadPCXImage function in coders/pcx.c in ImageMagick 7.0.4.9 allows remote attackers to cause a denial of service (attempted large memory allocation and application crash) via a crafted file. | 5.5 |