Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cnvdChina National Vulnerability DatabaseCNVD-2021-87024
HistorySep 24, 2021 - 12:00 a.m.

IBM Sterling B2B Integrator Cross-Site Scripting Vulnerability (CNVD-2021-87024)

2021-09-2400:00:00
China National Vulnerability Database
www.cnvd.org.cn
4

0.001 Low

EPSS

Percentile

19.6%

JSON

IBM Sterling B2B Integrator is a suite of software from IBM USA that integrates critical B2B processes, transactions and relationships. The software supports secure integration of complex B2B processes with different partner communities.A cross-site scripting vulnerability exists in IBM Sterling B2B Integrator Standard Edition, which stems from the software’s lack of effective filtering and escaping of parameters in the Web UI. An attacker could exploit the vulnerability to embed arbitrary JavaScript code in the Web UI, which could alter the intended functionality and potentially lead to credential disclosure in trusted sessions.

Related

ibm 1
nvd 1
cvelist 1
cve 1
prion 1
ibm
ibm
Security Bulletin: Cross-Site Scripting Vulnerability Affects IBM Sterling File Gateway (CVE-2021-20484)
2021-09-22 21:06:21
nvd
nvd
CVE-2021-20484
2021-09-23 17:15:11
cvelist
cvelist
CVE-2021-20484
2021-09-22 00:00:00
cve
cve
CVE-2021-20484
2021-09-23 17:15:11
prion
prion
Cross site scripting
2021-09-23 17:15:00

0.001 Low

EPSS

Percentile

19.6%

JSON
Related for CNVD-2021-87024
ibm1nvd1cvelist1cve1prion1