📦 Aspera Shares

IBM Aspera Shares versions 1.9.0 through 1.10.0 PL6 improperly validate 'Client-IP' headers, allowing attackers to spoof their IP addresses in log files. This affects organizations using these version...

IBM Aspera Shares versions 1.9.0 through 1.10.0 PL6 are vulnerable to HTML injection, allowing attackers to inject malicious HTML that executes in victims' browsers within the site's security context....

IBM Aspera Shares versions 1.9.0 through 1.10.0 PL6 contain a server-side request forgery (SSRF) vulnerability that allows authenticated attackers to make unauthorized requests from the server. This c...

IBM Aspera Shares versions 1.9.0 through 1.10.0 PL6 have an email rate limiting vulnerability that allows authenticated users to send excessive emails. This could lead to email flooding attacks or den...