cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2014-0848,https://securityvulnerability.io/vulnerability/CVE-2014-0848,,"The (1) ssl.conf and (2) httpd.conf files in the Apache HTTP Server component in IBM Netezza Performance Portal 2.0 before 2.0.0.4 have weak SSLCipherSuite values, which makes it easier for remote attackers to defeat cryptographic protection mechanisms via a brute-force attack.",IBM,Netezza Performance Portal,,,0.0008200000156648457,false,,false,false,false,,,false,false,,2014-03-26T10:00:00.000Z,0
CVE-2013-6731,https://securityvulnerability.io/vulnerability/CVE-2013-6731,,IBM Netezza Performance Portal 2.x before 2.0.0.3 allows remote authenticated users to change arbitrary passwords via an HTTP POST request.,IBM,Netezza Performance Portal,,,0.0007699999841861427,false,,false,false,false,,,false,false,,2014-02-26T11:00:00.000Z,0
CVE-2013-0470,https://securityvulnerability.io/vulnerability/CVE-2013-0470,,"HTTPD in IBM Netezza Performance Portal 1.0.2 allows remote authenticated users to list application directories containing asset files via a direct request to a directory URI, as demonstrated by listing image files.",IBM,Netezza Performance Portal,,,0.001069999998435378,false,,false,false,false,,,false,false,,2013-04-05T16:00:00.000Z,0
CVE-2012-5761,https://securityvulnerability.io/vulnerability/CVE-2012-5761,,"Cross-site scripting (XSS) vulnerability in the WebAdmin application 6.0.5, 6.0.8, and 7.0 before P2 in IBM Netezza allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.",IBM,Netezza,,,0.0006200000061653554,false,,false,false,false,,,false,false,,2013-02-20T11:00:00.000Z,0
CVE-2012-5763,https://securityvulnerability.io/vulnerability/CVE-2012-5763,,"Cross-site request forgery (CSRF) vulnerability in the WebAdmin application 6.0.5, 6.0.8, and 7.0 before P2 in IBM Netezza allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.",IBM,Netezza,,,0.0008999999845400453,false,,false,false,false,,,false,false,,2013-02-20T11:00:00.000Z,0
CVE-2012-5760,https://securityvulnerability.io/vulnerability/CVE-2012-5760,,"SQL injection vulnerability in the WebAdmin application 6.0.5, 6.0.8, and 7.0 before P2 in IBM Netezza allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.",IBM,Netezza,,,0.001069999998435378,false,,false,false,false,,,false,false,,2013-02-20T11:00:00.000Z,0
CVE-2012-5940,https://securityvulnerability.io/vulnerability/CVE-2012-5940,,"The WebAdmin application 6.0.5, 6.0.8, and 7.0 before P2 in IBM Netezza, when SSL is not enabled, allows remote attackers to discover credentials by sniffing the network during the authentication process.",IBM,Netezza,,,0.0022799998987466097,false,,false,false,false,,,false,false,,2013-02-20T11:00:00.000Z,0
CVE-2012-5941,https://securityvulnerability.io/vulnerability/CVE-2012-5941,,"Cross-site scripting (XSS) vulnerability in the WebAdmin application 6.0.5, 6.0.8, and 7.0 before P2 in IBM Netezza allows remote authenticated users to inject content, and conduct phishing attacks, via unspecified vectors.",IBM,Netezza,,,0.0006200000061653554,false,,false,false,false,,,false,false,,2013-02-20T11:00:00.000Z,0
CVE-2012-5762,https://securityvulnerability.io/vulnerability/CVE-2012-5762,,"Cross-site scripting (XSS) vulnerability in the WebAdmin application 6.0.5, 6.0.8, and 7.0 before P2 in IBM Netezza allows remote authenticated users to inject arbitrary web script or HTML via vectors involving the MHTML protocol.",IBM,Netezza,,,0.0006200000061653554,false,,false,false,false,,,false,false,,2013-02-20T11:00:00.000Z,0