Ibm: >> Websphere Commerce >> 7.0.0.3 Security Vulnerabilities
Unspecified vulnerability in IBM WebSphere Commerce 6.0 through 6.0.0.11 and 7.0 through 7.0.0.6 allows remote attackers to obtain users' personal data via unknown vectors.
CVSS Score
5.0
EPSS Score
0.014
Published
2012-10-01
IBM WebSphere Commerce 7.0 before 7.0.0.6, when persistent sessions and personalization IDs are enabled, allows remote attackers to cause a denial of service (resource consumption) via unspecified vectors.
CVSS Score
2.6
EPSS Score
0.013
Published
2012-09-25
IBM WebSphere Commerce 6.x through 6.0.0.11 and 7.x through 7.0.0.3 does not properly implement Activity Token authentication for Web Services, which has unspecified impact and attack vectors.
CVSS Score
10.0
EPSS Score
0.02
Published
2011-09-20
Page 3