Filter
AND
AND
-Infinity
0

Trending

Last week
Last month
Last year

IBM Cognos ControllerIBM Controller could allow an authenticated attacker to conduct formula injection. An attacker could…

high
8
First published (updated )
CVE-2024-45084

IBM Cognos ControllerXEE

high
8.2
First published (updated )
CVE-2023-47160

IBM Cognos ControllerIBM Controller client application contains hard coded database passwords in source code which could …

high
8.8
First published (updated )
CVE-2024-52902

IBM Cognos ControllerIBM Cognos Controller is vulnerable to unrestricted deserialization. This vulnerability allows users…

high
8.8
First published (updated )
CVE-2024-28777

IBM Cognos ControllerIBM Cognos Controller improper certificate validation

high
8.2
First published (updated )
CVE-2024-40702

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

IBM Cognos Controllerpath-to-regexp Unpatched `path-to-regexp` ReDoS in 0.1.x

high
7.7
First published (updated )
CVE-2024-52798

IBM Cognos ControllerIBM Cognos Controller information disclosure

high
7.5
First published (updated )
CVE-2024-41775

IBM Cognos ControllerIBM Cognos Controller hard coded credentials

high
7.5
First published (updated )
CVE-2024-41777

IBM Cognos ControllerApache XML Graphics FOP: XML External Entity (XXE) Processing

high
7.5
First published (updated )
CVE-2024-28168

npm/path-to-regexppath-to-regexp outputs backtracking regular expressions

high
7.5
First published (updated )
CVE-2024-45296

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

IBM Cognos ControllerCommand Injection

high
8.1
First published (updated )
CVE-2024-36138

IBM Cognos ControllerIBM WebSphere Application Server Libery information disclosure

high
7.5
First published (updated )
CVE-2023-50314

maven/com.graphql-java:graphql-javaGraphQL Java (aka graphql-java) before 21.5 does not properly consider ExecutableNormalizedFields (E…

high
7.5
First published (updated )
CVE-2024-40094

IBM Cognos ControllerIBM Cognos Controller session fixation

high
8.8
First published (updated )
CVE-2023-40695

IBM Cognos ControllerIBM Cognos Controller SQL injection

high
7.2
First published (updated )
CVE-2021-20451

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

IBM Cognos ControllerIBM Cognos Controller information disclosure

high
7.5
First published (updated )
CVE-2023-40696

IBM Cognos ControllerIBM Cognos Controller information disclosure

high
7.5
First published (updated )
CVE-2020-4874

maven/org.springframework:spring-webSpring Framework URL Parsing with Host Validation

high
8.1
First published (updated )
CVE-2024-22262

maven/org.springframework:spring-webSpring Framework URL Parsing with Host Validation

high
8.1
First published (updated )
CVE-2024-22243

OpenJDK 8Use After Free

high
7.4
EPSS
0.08%
First published (updated )
CVE-2024-20952

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Oracle Java SE 7Last updated 11 November 2024

high
7.4
EPSS
0.08%
First published (updated )
CVE-2024-20918

maven/software.amazon.ion:ion-javaIon Java StackOverflow vulnerability

high
7.5
EPSS
0.05%
First published (updated )
CVE-2024-21634

maven/org.apache.tiles:tiles-coreApache Tiles: Unvalidated input may lead to path traversal and XXE

high
7.5
First published (updated )
CVE-2023-49735

IBM TXSeries for MultiplatformsIBM GSKit-Crypto information disclosure

high
7.5
First published (updated )
CVE-2023-33850

OpenJDK 8An unspecified vulnerability in Oracle Java SE, Oracle GraalVM Enterprise Edition related to the JS…

high
7.4
First published (updated )
CVE-2023-21930

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

maven/org.apache.tomcat.embed:tomcat-embed-coreApache Commons FileUpload, Apache Tomcat: FileUpload DoS with excessive parts

high
7.5
First published (updated )
CVE-2023-24998

redhat/nodejsUndici vulnerable to Regular Expression Denial of Service in Headers

high
7.5
First published (updated )
CVE-2023-24807

Node.jsLast updated 24 July 2024

high
7.5
First published (updated )
CVE-2023-23919

Node.jsIt was possible to bypass Permissions and access non authorized modules by using process.mainModule.…

high
7.5
First published (updated )
CVE-2023-23918

IBM Cognos ControllerCodehaus-plexus: directory traversal

high
7.5
First published (updated )
CVE-2022-4244

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203