Ibm Websphere Commerce Suite vulnerabilities
3 known vulnerabilities affecting ibm/websphere_commerce_suite.
Total CVEs
3
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
HIGH2MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2001-0962HIGHCVSS 7.5v3.1.2v3.22001-09-19
CVE-2001-0962 [HIGH] CVE-2001-0962: IBM WebSphere Application Server 3.02 through 3.53 uses predictable session IDs for cookies, which a
IBM WebSphere Application Server 3.02 through 3.53 uses predictable session IDs for cookies, which allows remote attackers to gain privileges of WebSphere users via brute force guessing.
nvd
CVE-2001-0446MEDIUMCVSS 5.0v4.0.12001-06-18
CVE-2001-0446 [MEDIUM] CVE-2001-0446: IBM WCS (WebSphere Commerce Suite) 4.0.1 with Application Server 3.0.2 allows remote attackers to re
IBM WCS (WebSphere Commerce Suite) 4.0.1 with Application Server 3.0.2 allows remote attackers to read source code for .jsp files by appending a / to the requested URL.
nvd
CVE-2001-0319HIGHCVSS 7.5PoCv3.1.2v3.2+2 more2001-05-03
CVE-2001-0319 [HIGH] CVE-2001-0319: orderdspc.d2w macro in IBM Net.Commerce 3.x allows remote attackers to execute arbitrary SQL queries
orderdspc.d2w macro in IBM Net.Commerce 3.x allows remote attackers to execute arbitrary SQL queries by inserting them into the order_rn option of the report capability.
nvd