CVE-2020-35482 (serv-u)
SolarWinds Serv-U before 15.2.2 allows authenticated reflected XSS.
CVE-2020-36231 (jira, jira_software_data_center)
Affected versions of Atlassian Jira Server and Data Center allow remote attackers to view the metadata of boards they should…
CVE-2020-4640 (api_connect)
Certain IBM API Connect 10.0.0.0 through 10.0.1.0 and 2018.4.1.0 through 2018.4.1.13 configurations can result in sensitive information in the URL…
CVE-2020-4825 (api_connect)
IBM API Connect 10.0.0.0 through 10.0.1.0 and 2018.4.1.0 through 2018.4.1.13 is vulnerable to cross-site scripting. This vulnerability allows users to…
CVE-2020-4826 (api_connect)
IBM API Connect 10.0.0.0 through 10.0.1.0 and 2018.4.1.0 through 2018.4.1.13 is vulnerable to cross-site request forgery which could allow an…
CVE-2020-4827 (api_connect)
IBM API Connect 10.0.0.0 through 10.0.1.0 and 2018.4.1.0 through 2018.4.1.13 is vulnerable to cross-site request forgery which could allow an…
CVE-2020-4828 (api_connect)
IBM API Connect 10.0.0.0 through 10.0.1.0 and 2018.4.1.0 through 2018.4.1.13 is vulnerable to web cache poisoning, caused by improper input…
CVE-2020-4934 (content_navigator)
IBM Content Navigator 3.0.CD could allow a remote attacker to traverse directories on the system. An attacker could send a…
CVE-2020-5032 (qradar_security_information_and_event_manager)
IBM QRadar SIEM 7.3 and 7.4 in some configurations may be vulnerable to a temporary denial of service attack when…
CVE-2020-9389 (squaredup)
A username enumeration issue was discovered in SquaredUp before version 4.6.0. The login functionality was implemented in a way that…