Filtered by vendor Siemens
Subscriptions
Filtered by product Polarion
Subscriptions
Total
4 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2025-40587 | 1 Siemens | 1 Polarion | 2026-02-10 | 7.6 High |
| A vulnerability has been identified in Polarion V2404 (All versions < V2404.5), Polarion V2410 (All versions < V2410.2). The affected application allows arbitrary JavaScript code be included in document titles. This could allow an authenticated remote attacker to conduct a stored cross-site scripting attack by creating specially crafted document titles that are later viewed by other users of the application. | ||||
| CVE-2019-13936 | 1 Siemens | 1 Polarion | 2024-11-21 | 3.5 Low |
| Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in webclient of Siemens AG Polarion could allow an attacker to exploit a persistent XSS vulnerability. This issue affects: Siemens AG Polarion All versions < 19.2. | ||||
| CVE-2019-13935 | 1 Siemens | 1 Polarion | 2024-11-21 | 3.5 Low |
| Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in webclient of Siemens AG Polarion could allow an attacker to exploit a reflected XSS vulnerability. This issue affects: Siemens AG Polarion All versions < 19.2. | ||||
| CVE-2019-13934 | 1 Siemens | 1 Polarion | 2024-11-21 | 3.5 Low |
| Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in webclient of Siemens AG Polarion could allow an attacker to exploit a reflected XSS vulnerability. This issue affects: Siemens AG Polarion All versions < 19.2. | ||||
Page 1 of 1.