Vulnerabilities (CVE)

Filtered by vendor Ibm Subscribe
Filtered by product Content Template Catalog
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2015-0195 1 Ibm 2 Content Template Catalog, Websphere Portal 2024-11-21 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in IBM Content Template Catalog 4.x before 4.1.4 for WebSphere Portal 8.0.x and 4.x before 4.3.1 for WebSphere Portal 8.5.x allows remote attackers to inject arbitrary web script or HTML via a crafted URL.
CVE-2013-4012 1 Ibm 2 Content Template Catalog, Websphere Portal 2024-11-21 4.9 MEDIUM N/A
IBM WebSphere Portal 8.0.0.x before 8.0.0.1 CF09, when Content Template Catalog 4.0 is used, does not require administrative privileges for Portal Application Archive (PAA) file installation, which allows remote authenticated users to modify data or cause a denial of service via unspecified vectors.