CVE-2014-6188

Name of the Vulnerable Software and Affected Versions IBM WebSphere Service Registry and Repository (WSRR) versions 6.3.x before 6.3.0.5 IBM WebSphere Service Registry and Repository (WSRR) versions 7.0.x through 7.0.0.5 IBM WebSphere Service Registry and Repository (WSRR) versions 7.5.x before 7.5.0.3 IBM WebSphere Service Registry and Repository (WSRR) versions 8.0.x before 8.0.0.2

Description The issue allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors, which can lead to cross-site scripting (XSS) attacks.

Recommendations For versions 6.3.x before 6.3.0.5, update to version 6.3.0.5 or later. For versions 7.0.x through 7.0.0.5, update to version 7.0.0.6 or later. For versions 7.5.x before 7.5.0.3, update to version 7.5.0.3 or later. For versions 8.0.x before 8.0.0.2, update to version 8.0.0.2 or later.