Vulnerability Name CVE Severity
IBM RTC Session Fixation Vulnerability (CVE-2018-1492) CVE-2018-1492
IBM Tivoli Access Manager directory traversal CVE-2010-4622 CVE-2011-0494
IBM Web Content Manager XPath injection CVE-2013-6735
IBM WebSEAL 7PK - Security Features Vulnerability (CVE-2016-3025) CVE-2016-3025
IBM WebSEAL CVE-2018-1722 Vulnerability (CVE-2018-1722) CVE-2018-1722
IBM WebSEAL CVE-2018-1813 Vulnerability (CVE-2018-1813) CVE-2018-1813
IBM WebSEAL CVE-2018-1850 Vulnerability (CVE-2018-1850) CVE-2018-1850
IBM WebSEAL CVE-2019-4135 Vulnerability (CVE-2019-4135) CVE-2019-4135
IBM WebSEAL CVE-2019-4145 Vulnerability (CVE-2019-4145) CVE-2019-4145
IBM WebSEAL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-3045) CVE-2016-3045
IBM WebSEAL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-1474) CVE-2017-1474
IBM WebSEAL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-1476) CVE-2017-1476
IBM WebSEAL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2018-1805) CVE-2018-1805
IBM WebSEAL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2018-1886) CVE-2018-1886
IBM WebSEAL Improper Authentication Vulnerability (CVE-2018-1443) CVE-2018-1443
IBM WebSEAL Improper Certificate Validation Vulnerability (CVE-2019-4150) CVE-2019-4150
IBM WebSEAL Improper Input Validation Vulnerability (CVE-2019-4036) CVE-2019-4036
IBM WebSEAL Improper Input Validation Vulnerability (CVE-2020-4461) CVE-2020-4461
IBM WebSEAL Improper Input Validation Vulnerability (CVE-2021-20496) CVE-2021-20496
IBM WebSEAL Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-3018) CVE-2016-3018
IBM WebSEAL Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-1653) CVE-2018-1653
IBM WebSEAL Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-1740) CVE-2018-1740
IBM WebSEAL Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-1815) CVE-2018-1815
IBM WebSEAL Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-4157) CVE-2019-4157
IBM WebSEAL Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-4725) CVE-2019-4725
IBM WebSEAL Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') Vulnerability (CVE-2016-3028) CVE-2016-3028
IBM WebSEAL Improper Restriction of Rendered UI Layers or Frames Vulnerability (CVE-2018-1803) CVE-2018-1803
IBM WebSEAL Improper Restriction of XML External Entity Reference Vulnerability (CVE-2019-4707) CVE-2019-4707
IBM WebSEAL Inadequate Encryption Strength Vulnerability (CVE-2018-1814) CVE-2018-1814
IBM WebSEAL Inadequate Encryption Strength Vulnerability (CVE-2019-4151) CVE-2019-4151
IBM WebSEAL Incorrect Authorization Vulnerability (CVE-2023-38368) CVE-2023-38368
IBM WebSEAL Incorrect Default Permissions Vulnerability (CVE-2023-38370) CVE-2023-38370
IBM WebSEAL Incorrect Default Permissions Vulnerability (CVE-2024-35139) CVE-2024-35139
IBM WebSEAL Insertion of Sensitive Information into Log File Vulnerability (CVE-2017-1480) CVE-2017-1480
IBM WebSEAL Insufficiently Protected Credentials Vulnerability (CVE-2021-20439) CVE-2021-20439
IBM WebSEAL Missing Authorization Vulnerability (CVE-2019-4158) CVE-2019-4158
IBM WebSEAL Missing Authorization Vulnerability (CVE-2020-4499) CVE-2020-4499
IBM WebSEAL Observable Differences in Behavior to Error Inputs Vulnerability (CVE-2020-4660) CVE-2020-4660
IBM WebSEAL Observable Differences in Behavior to Error Inputs Vulnerability (CVE-2020-4661) CVE-2020-4661
IBM WebSEAL Observable Differences in Behavior to Error Inputs Vulnerability (CVE-2020-4699) CVE-2020-4699
IBM WebSEAL Other Vulnerability (CVE-2019-4552) CVE-2019-4552
IBM WebSEAL Other Vulnerability (CVE-2023-30997) CVE-2023-30997
IBM WebSEAL Other Vulnerability (CVE-2023-30998) CVE-2023-30998
IBM WebSEAL Session Fixation Vulnerability (CVE-2018-1804) CVE-2018-1804
IBM WebSEAL Session Fixation Vulnerability (CVE-2019-4152) CVE-2019-4152
IBM WebSEAL URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2017-1489) CVE-2017-1489
IBM WebSEAL URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2019-4153) CVE-2019-4153
IBM WebSEAL Use of a Broken or Risky Cryptographic Algorithm Vulnerability (CVE-2019-4156) CVE-2019-4156
IBM WebSEAL Use of a Broken or Risky Cryptographic Algorithm Vulnerability (CVE-2023-38371) CVE-2023-38371
IBM WebSEAL Use of Hard-coded Credentials Vulnerability (CVE-2018-1887) CVE-2018-1887
IBM WebSEAL Weak Password Requirements Vulnerability (CVE-2024-35137) CVE-2024-35137
IBM WebSphere/WebLogic application source file exposure
IBM WebSphere administration console weak password
IBM WebSphere RCE Java Deserialization Vulnerability CVE-2015-7450
IIS extended unicode directory traversal vulnerability CVE-2000-0884
IIS Path disclosure
ImageMagick remote code execution CVE-2016-3714
imgproxy SSRF (CVE-2023-30019) CVE-2023-30019
Improper Authorization in Confluence Server and Data Center (CVE-2023-22518) CVE-2023-22518
Incorrect Content Security Policy (CSP) Implementation
InfluxDB Unauthorized Access Vulnerability
Insecure crossdomain.xml policy
Insecure Frame (External)
Insecure HTTP Usage
Insecure Protocol Detected in Content Security Policy (CSP)
Insecure Referrer Policy
Insecure transition from HTTPS to HTTP in form post
Insecure transition from HTTP to HTTPS in form post
Insecure Transportation Security Protocol Supported (SSLv2)
Insecure Transportation Security Protocol Supported (SSLv3)
Insecure Transportation Security Protocol Supported (TLS 1.0)
Insecure Transportation Security Protocol Supported (TLS 1.1)
Insecure usage of Version 1 UUID/GUID
Internet Information Server returns IP address in HTTP header (Content-Location)
Internet Information Services Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') Vulnerability (CVE-2009-3023) CVE-2009-3023