Versions
6.0.1.2
8.0.0.1
6.0.1.4
6.0
6.1.5.3
6.1.0.4
6.0.1.6
6.0.0.0
7.0.0.1
5.1.0.0
6.1.0.2
6.1.0.0
8.5, 9.0
6.0.1.1
6.0.0.3
6.0.0.2
7.0.0.2
6.0.1.5
5.1.0.5
8
6.1
8.5
6.1.0
6.1.0.6
6.1.0.5
9.0
5.1.0.4
6.0.1.0
6.1.0.3
6.0.0.1
6.0.1.5 build wp6015_008_01
5.1.0.3
1.0
6.0.1
6.0.1.3
6.1.5.1
7.0
6.1.5.0
5.1.0.2
7
5.1.0.1
6.1.0.1
6.1.5
8.0
6.0.0
6.0.0.4
6.1.5.2
6.0.1.7
8.5.0
Recent CVEs
CVE-2017-1156
IBM WebSphere Portal 8.5 and 9.0 could allow a remote attacker to conduct phishing attacks, using an open redirect attack. By persuading a victim to visit a specially-crafted Web site, a remote attacker could exploit this vulnerability to spoof the URL displayed to redirect a user to a malicious Web site that would appear to be trusted. This could allow the attacker to obtain highly sensitive information or conduct further attacks against the victim. IBM X-Force. ID: 122592
CVE-2017-1120
IBM WebSphere Portal 8.5 and 9.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM Reference #: 2000152.
CVE-2016-8922
Exphox WebRadar is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.
CVE-2016-8936
IBM Social Rendering Templates for Digital Data Connector is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.