CVE-2014-3010

Name of the Vulnerable Software and Affected Versions IBM WebSphere Service Registry and Repository (WSRR) versions 6.2, 6.3 through 6.3.0.5, 7.0 through 7.0.0.5, 7.5 through 7.5.0.4, 8.0 through 8.0.0.2

Description A cross-site scripting (XSS) issue exists in the Web UI, allowing remote attackers to inject arbitrary web script or HTML via a crafted URL. This could potentially lead to unauthorized actions on the web application.

Recommendations For version 6.2, update to a fixed version. For versions 6.3 through 6.3.0.5, update to version 6.3.0.6 or later. For versions 7.0 through 7.0.0.5, update to version 7.0.0.6 or later. For versions 7.5 through 7.5.0.4, update to version 7.5.0.5 or later. For versions 8.0 through 8.0.0.2, update to version 8.0.0.3 or later.