NVD - Results

Sort results by:

Search Results (Refine Search)

Search Parameters:

Results Type: Overview
Keyword (text search): cpe:2.3:a:ibm:rational_publishing_engine:2.0.1:*:*:*:*:*:*:*
CPE Name Search: true

There are 2 matching records.

Displaying matches 1 through 2.

Vuln ID	Summary	CVSS Severity
CVE-2016-2914	Unrestricted file upload vulnerability in the Document Builder in IBM Rational Publishing Engine (aka RPENG) 2.0.1 before ifix002 allows remote authenticated users to execute arbitrary code by specifying an unexpected file extension. Published: August 07, 2016; 9:59:09 PM -0400	V3.0: 5.4 MEDIUM V2.0: 5.5 MEDIUM
CVE-2016-2912	Cross-site scripting (XSS) vulnerability in the Document Builder in IBM Rational Publishing Engine (aka RPENG) 2.0.1 before ifix002 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL. Published: August 07, 2016; 9:59:08 PM -0400	V3.0: 5.4 MEDIUM V2.0: 3.5 LOW