cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2018-1921,https://securityvulnerability.io/vulnerability/CVE-2018-1921,,"IBM Campaign 9.1.0, 9.1.2, 10.1, and 11.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 152857.",IBM,Campaign,5.4,MEDIUM,0.0005000000237487257,false,,false,false,false,,,false,false,,2019-07-17T14:15:00.000Z,0
CVE-2019-4384,https://securityvulnerability.io/vulnerability/CVE-2019-4384,,"IBM Campaign 9.1.2 and 10.1 could allow a remote attacker to traverse directories on the system. An attacker could send a specially-crafted URL request containing ""dot dot"" sequences (/../) to view arbitrary files on the system. IBM X-Force ID: 162172.",IBM,Campaign,4.3,MEDIUM,0.000750000006519258,false,,false,false,false,,,false,false,,2019-06-19T14:15:00.000Z,0
CVE-2018-1941,https://securityvulnerability.io/vulnerability/CVE-2018-1941,,IBM Campaign 9.1.0 and 9.1.2 could allow a local user to obtain admini privileges due to the application not validating access permissions. IBM X-Force ID: 153382.,IBM,Campaign,8.4,HIGH,0.0004199999966658652,false,,false,false,false,,,false,false,,2018-12-05T17:29:00.000Z,0
CVE-2016-9749,https://securityvulnerability.io/vulnerability/CVE-2016-9749,,"IBM Campaign 9.1.0, 9.1.2, 10.0, and 10.1 could allow an authenticated user with access to the local network to bypass security due to lack of input validation. IBM X-Force ID: 120206.",IBM,Campaign,4,MEDIUM,0.0004400000034365803,false,,false,false,false,,,false,false,,2018-11-09T01:29:00.000Z,0
CVE-2017-1114,https://securityvulnerability.io/vulnerability/CVE-2017-1114,,"IBM Campaign 9.1, 9.1.2, and 10 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 121152.",IBM,Campaign,5.4,MEDIUM,0.0005000000237487257,false,,false,false,false,,,false,false,,2018-09-07T15:29:00.000Z,0
CVE-2017-1115,https://securityvulnerability.io/vulnerability/CVE-2017-1115,,"IBM Campaign 9.1, 9.1.2, and 10 is vulnerable to HTML injection. A remote attacker could inject malicious HTML code, which when viewed, would be executed in the victim's Web browser within the security context of the hosting site. IBM X-Force ID: 121153.",IBM,Campaign,5.4,MEDIUM,0.0006399999838322401,false,,false,false,false,,,false,false,,2018-09-07T15:29:00.000Z,0
CVE-2017-1116,https://securityvulnerability.io/vulnerability/CVE-2017-1116,,"IBM Campaign 8.6, 9.0, 9.1, 9.1.1, 9.1.2, and 10.0 contains excessive details on the client side which could provide information useful for an authenticated user to conduct other attacks. IBM X-Force ID: 121154.",IBM,Campaign,4.3,MEDIUM,0.0006500000017695129,false,,false,false,false,,,false,false,,2018-04-27T15:29:00.000Z,0
CVE-2016-0265,https://securityvulnerability.io/vulnerability/CVE-2016-0265,,"IBM Campaign is vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A remote attacker could exploit this vulnerability using a specially-crafted URL to execute script in a victim's Web browser within the security context of the hosting Web site, once the URL is clicked. An attacker could use this vulnerability to steal the victim's cookie-based authentication credentials.",IBM Corporation,Campaign,5.4,MEDIUM,0.0005099999834783375,false,,false,false,false,,,false,false,,2017-02-01T20:00:00.000Z,0