cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2024-49791,https://securityvulnerability.io/vulnerability/CVE-2024-49791,Cross-Site Scripting Vulnerability in IBM ApplinX 11.1,"IBM ApplinX 11.1 contains a cross-site scripting (XSS) vulnerability which allows an authenticated user to inject arbitrary JavaScript code into the web interface. This can compromise the intended functionality of the application, potentially resulting in unauthorized access to sensitive information, such as user credentials, during a trusted session.",IBM,Applinx,6.4,MEDIUM,0.00044999999227002263,false,,false,false,false,,false,false,false,,2025-02-06T00:15:00.000Z,0
CVE-2024-49792,https://securityvulnerability.io/vulnerability/CVE-2024-49792,Cross-Site Scripting Flaw in IBM ApplinX 11.1,"IBM ApplinX 11.1 contains a cross-site scripting vulnerability that can be exploited by an authenticated user. This flaw permits the injection of arbitrary JavaScript code into the Web UI, which may compromise the security of user credentials during trusted sessions. Attackers could manipulate the application’s intended behavior, leading to unauthorized access and potential data breaches. It is crucial for users and administrators to evaluate their security measures and update the application to mitigate the risks associated with this vulnerability.",IBM,Applinx,5.4,MEDIUM,0.00044999999227002263,false,,false,false,false,,false,false,false,,2025-02-06T00:15:00.000Z,0
CVE-2024-49793,https://securityvulnerability.io/vulnerability/CVE-2024-49793,Cross-Site Scripting Vulnerability in IBM ApplinX 11.1,IBM ApplinX version 11.1 is susceptible to a cross-site scripting vulnerability that enables authenticated users to inject arbitrary JavaScript code into the Web UI. This flaw can compromise the intended functionality of the application and potentially lead to the unauthorized disclosure of user credentials during a trusted session.,IBM,Applinx,5.4,MEDIUM,0.00044999999227002263,false,,false,false,false,,false,false,false,,2025-02-06T00:15:00.000Z,0
CVE-2024-49794,https://securityvulnerability.io/vulnerability/CVE-2024-49794,Cross-Site Request Forgery in IBM ApplinX 11.1,"IBM ApplinX 11.1 is exposed to a cross-site request forgery vulnerability allowing attackers to potentially execute unauthorized actions by leveraging the trust established with authenticated users. As a result, visiting a malicious link could trigger detrimental actions on trusted accounts without user consent.",IBM,Applinx,4.3,MEDIUM,0.0004600000102072954,false,,false,false,false,,false,false,false,,2025-02-06T00:15:00.000Z,0
CVE-2024-49795,https://securityvulnerability.io/vulnerability/CVE-2024-49795,Cross-Site Request Forgery Vulnerability in IBM ApplinX 11.1,"IBM ApplinX 11.1 is affected by a cross-site request forgery vulnerability that may allow attackers to execute unauthorized actions by sending crafted requests from a trusted user. This means that if an attacker manipulates a logged-in user's browser, they can force the user to perform actions without their consent, potentially compromising data integrity and user safety.",IBM,Applinx,4.3,MEDIUM,0.0004600000102072954,false,,false,false,false,,false,false,false,,2025-02-06T00:15:00.000Z,0
CVE-2024-49796,https://securityvulnerability.io/vulnerability/CVE-2024-49796,Remote Clickjacking Vulnerability in IBM ApplinX 11.1,"IBM ApplinX 11.1 contains a vulnerability that allows remote attackers to hijack user click actions by tricking individuals into visiting a malicious website. This exploitation can lead to further attacks on affected users, compromising their online safety and security.",IBM,Applinx,5.4,MEDIUM,0.00044999999227002263,false,,false,false,false,,false,false,false,,2025-02-06T00:15:00.000Z,0
CVE-2024-49797,https://securityvulnerability.io/vulnerability/CVE-2024-49797,Information Disclosure Vulnerability in IBM ApplinX by IBM,"IBM ApplinX 11.1 has a vulnerability stemming from improper configuration of HTTP Strict Transport Security (HSTS). This oversight can allow remote attackers to exploit the system, potentially gaining access to sensitive information through man-in-the-middle techniques. Proper implementation of HSTS is essential to ensure the confidentiality and integrity of the data transmitted, as insufficient enforcement may expose users and their data to significant risks.",IBM,Applinx,5.9,MEDIUM,0.0008699999889358878,false,,false,false,false,,false,false,false,,2025-02-06T00:15:00.000Z,0
CVE-2024-49798,https://securityvulnerability.io/vulnerability/CVE-2024-49798,Remote Information Disclosure in IBM ApplinX 11.1,"IBM ApplinX 11.1 contains a vulnerability that may permit a remote attacker to access sensitive information through detailed technical error messages displayed in the browser. This exposure of information can lead to more extensive attacks against the affected system, making it crucial for users to address this vulnerability promptly.",IBM,Applinx,4.3,MEDIUM,0.00044999999227002263,false,,false,false,false,,false,false,false,,2025-02-06T00:15:00.000Z,0
CVE-2024-49800,https://securityvulnerability.io/vulnerability/CVE-2024-49800,Sensitive Information Exposure in IBM ApplinX 11.1,"IBM ApplinX 11.1 is affected by a vulnerability that allows authenticated users to access sensitive information stored in cleartext in memory. This exposure poses a risk as it can lead to unauthorized access to confidential data, which could be exploited for malicious purposes. Organizations using this version should take immediate action to mitigate the risk associated with this vulnerability to protect their sensitive data.",IBM,Applinx,4.3,MEDIUM,0.00044999999227002263,false,,false,false,false,,false,false,false,,2025-02-06T00:15:00.000Z,0