Lucene search
China National Vulnerability DatabaseCNVD-2022-55504HistoryJul 18, 2022 - 12:00 a.m.
IBM WebSphere Application Server跨站脚本漏洞
2022-07-1800:00:00
China National Vulnerability Database
www.cnvd.org.cn
10
0.001 Low
EPSS
Percentile
26.9%
IBM WebSphere Application Server (WAS) is an application server product from IBM of the United States. The product is a platform for JavaEE and Web services applications and is the foundation of the IBM WebSphere software platform.IBM WebSphere Application Server versions 8.5 and 9.0 have a cross-site scripting vulnerability that stems from the program’s lack of data validation filtering of user-supplied data and output. An attacker could use the vulnerability to execute JavaScript code on the client side.
| CPE | Name | Operator | Version |
|---|---|---|---|
| ibm websphere application server | eq | 8.5 | |
| ibm websphere application server | eq | 9.0 |
Related
cve
cve
CVE-2022-22477
2022-07-14 17:15:08
ibm
ibm
prion
prion
Cross site scripting
2022-07-14 17:15:00
nessus
nessus
IBM WebSphere Application Server 8.5.x < 8.5.5.23 / 9.0.x < 9.0.5.14 XSS
2022-07-15 00:00:00
nvd
nvd
CVE-2022-22477
2022-07-14 17:15:08
cvelist
cvelist
CVE-2022-22477
2022-07-13 00:00:00