Ibm Websphere Commerce Suite — known CVE vulnerabilities
Every CVE whose affected-product data names Ibm Websphere Commerce Suite, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2001-0319 — CVSS 7.5 (high): orderdspc.d2w macro in IBM Net.Commerce 3.x allows remote attackers to execute arbitrary SQL queries by inserting them into the order_rn…
CVE-2001-0962 — CVSS 7.5 (high): IBM WebSphere Application Server 3.02 through 3.53 uses predictable session IDs for cookies, which allows remote attackers to gain…
CVE-2001-0446 — CVSS 5.0 (medium): IBM WCS (WebSphere Commerce Suite) 4.0.1 with Application Server 3.0.2 allows remote attackers to read source code for .jsp files by…
CVE-2009-2956 — CVSS 5.0 (medium): The (1) Net.Commerce and (2) Net.Data components in IBM WebSphere Commerce Suite store sensitive information under the web root with…