Informatica


56 total issues disclosed

$0 total paid publicly


Most disclosed (19 disclosures) — Cross-site Scripting (XSS) - Generic

View disclosed reports



Disclosed Reports


Report Title Vulnerability Type Disclosed By Severity Disclosed on
CVE-2021-40870 in [███] Code Injection fdeleite Critical 2021-11-15
Improper Sanitization leads to XSS Fire on admin panel Cross-site Scripting (XSS) - Stored montypythin High 2021-08-03
F5 BIG-IP Cookie potentially reveal BigIP pool name, backend's IP address and port, routed domain. Information Disclosure k4b33r_ Low 2021-06-28
Blind SQL injection at tsftp.informatica.com SQL Injection r1pley Critical 2020-11-16
..; bypass leading to tomcat scripts [Unauthenticated] Improper Access Control - Generic rodnt Medium 2020-10-13
Cross-site Scripting (XSS) - DOM - iqcard.informatica.com Cross-site Scripting (XSS) - DOM rodnt High 2020-10-13
XXE through injection of a payload in the XMP metadata of a JPEG file XML External Entities (XXE) moebius Critical 2020-04-21
RXSS in http://procurement-businesscatalog.informatica.com Cross-site Scripting (XSS) - Reflected min4tor No rating 2020-03-27
Cisco RCE Command Injection - Generic neolead Critical 2018-09-21
Reflected XSS Cross-site Scripting (XSS) - Generic panckazzz Medium 2018-09-09
[informatica.com]- Information Disclosure Information Disclosure irotem2 Medium 2018-09-05
SSRF on infawiki.informatica.com and infawikitest.informatica.com Server-Side Request Forgery (SSRF) 0ang3el Medium 2018-08-16
XXE at Informatica sub-domain Command Injection - Generic strukt High 2018-04-30
[http://www.informatica.com]- info disclosure Information Disclosure modam3r5 Critical 2018-02-26
[marketplace.informatica.com] - Template Injection Code Injection samengmg Critical 2018-01-02
[marketplace.informatica.com] - Sensitive Data Exposure Privacy Violation shogunlab Low 2017-12-18
[marketplace.informatica.com]-Reflected XSS Cross-site Scripting (XSS) - Reflected 0ways Medium 2017-12-15
[marketplace.informatica.com] - Stored XSS Cross-site Scripting (XSS) - Stored jubabaghdad High 2017-12-15
Unrestricted file upload - cloudacademy.informatica.com None supplied 0ways Medium 2017-12-01
[marketplace.informatica.com] User email disclosure Privacy Violation shogunlab Low 2017-11-07
[informatica.com]- Cross Site scripting Cross-site Scripting (XSS) - Generic irotem2 High 2017-10-30
Store XSS on Informatica University via transcript (informatica.csod.com) Cross-site Scripting (XSS) - Generic alfredsaonoy High 2017-09-09
[alpha.informatica.com] Expensive DOMXSS Cross-site Scripting (XSS) - Generic albinowax Medium 2017-07-08
[kb.informatica.com] DOM based XSS in the bindBreadCrumb function Cross-site Scripting (XSS) - Generic s_p_q_r High 2017-06-24
[marketplace.informatica.com] Search XSS Cross-site Scripting (XSS) - Generic s_p_q_r High 2017-05-22
[network.informatica.com] The login form XSS via the referer value Cross-site Scripting (XSS) - Generic s_p_q_r High 2017-05-22
XXE in upload file feature Denial of Service yarbabin High 2017-05-10
[careers.informatica.com] Cross Site Script Vulnerability on informatica Cross-site Scripting (XSS) - Generic gorkha High 2017-05-10
[parc.informatica.com] Reflected Cross Site Scripting and Open Redirect Cross-site Scripting (XSS) - Generic bogdantcaciuc Medium 2017-04-29
[marketplace.informatica.com]- Stored XSS on Image title and Edit Property Cross-site Scripting (XSS) - Generic fillawful High 2017-04-21
[marketplace.informatica.com] Profile stored XSS Cross-site Scripting (XSS) - Generic s_p_q_r High 2017-04-19
[ipm.informatica.com]- Broken Authentication Improper Authentication - Generic adminadminadmin High 2017-04-11
[kb.informatica.com] Stored XSS Cross-site Scripting (XSS) - Generic albinowax High 2017-04-09
Stored XSS via Discussion Title and Send as Email attribute in [marketplace.informatica.com] Cross-site Scripting (XSS) - Generic fillawful High 2017-04-08
[app.informaticaondemand.com] XXE Denial of Service yarbabin High 2017-04-08
[careers.informatica.com] XSS on "isJTN" Cross-site Scripting (XSS) - Generic modam3rly High 2017-04-07
[uk.informatica.com] XSS on uk.informatica..com Cross-site Scripting (XSS) - Generic grampae High 2017-02-28
[wave.informatica.com]- Subdomain missconfiguration Violation of Secure Design Principles mohammad-obaid Medium 2017-02-19
[marketplace.informatica.com] Persistent XSS through document title Cross-site Scripting (XSS) - Generic kasperkarlsson High 2017-02-02
[afocusp.informatica.com] Sql injection afocusp.informatica.com:37777 SQL Injection e3xpl0it Critical 2017-01-21
[ipm.informatica.com] Sql injection Oracle SQL Injection e3xpl0it Critical 2017-01-21
[careers.informatica.com] Reflected Cross Site Scripting to XSS Shell Possible Command Injection - Generic zephrfish High 2016-12-31
[now.informatica.com] Reflective XSS Cross-site Scripting (XSS) - Generic robd4k High 2016-12-09
[marketplace.informatica.com] - XXE Command Injection - Generic yarbabin High 2016-12-09
[marketplace.informatica.com] - XXE Command Injection - Generic yarbabin High 2016-12-09
[rev-app.informatica.com] - XXE via SAML Command Injection - Generic yarbabin High 2016-12-09
[product360.informatica.com] Unauthenticated Apache Tomcat 8 Installation Information Disclosure zephrfish Low 2016-12-08
[kb.informatica.com] Unauthenticated emails and HTML injection in email messages Cross-Site Request Forgery (CSRF) strukt Medium 2016-11-28
[oneclickdrsfdc-test.informatica.com] Tomcat Example Scripts Exposed Unauthenticated Improper Authentication - Generic zephrfish Low 2016-11-02
[rev-app.informatica.com] - XXE Denial of Service yarbabin High 2016-08-02
[marketplace.informatica.com] Open Redirect Open Redirect albinowax Low 2016-06-27
[now.informatica.com] Reflective Xss Cross-site Scripting (XSS) - Generic alyssa_herrera High 2016-05-19
[informatica.com] Blind SQL Injection SQL Injection konqi Critical 2016-04-19
[community.informatica.com] - CSRF in Private Messages allows to move user's messages to Trash Cross-Site Request Forgery (CSRF) artem High 2016-03-02
XSS in Search Communities Function Cross-site Scripting (XSS) - Generic ddworken Medium 2015-08-01
Missing SPF for informatica.com Violation of Secure Design Principles ruisilva No rating 2015-01-12