PT-2013-5502 · Ibm · Ibm Connections+1
Publicado
2013-11-13
·
Atualizado
2017-08-29
·
CVE-2013-5378
CVSS v2.0
3.5
Baixa
| Vetor | AV:N/AC:M/Au:S/C:N/I:P/A:N |
Name of the Vulnerable Software and Affected Versions
IBM WebSphere Portal versions prior to 8.0.0.1 CF8
Description
A cross-site scripting (XSS) issue exists, allowing remote authenticated users to inject arbitrary web script or HTML. This is due to incorrect integration with IBM Connections.
Recommendations
For versions prior to 8.0.0.1 CF8, update to version 8.0.0.1 CF8 or later to resolve the issue.
Correção
XSS
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Ibm Connections
Ibm Websphere Portal