Lucene search
China National Vulnerability DatabaseCNVD-2023-41890HistoryMay 23, 2023 - 12:00 a.m.
IBM InfoSphere Information Server Cross-Site Scripting Vulnerability (CNVD-2023-41890)
2023-05-2300:00:00
China National Vulnerability Database
www.cnvd.org.cn
4
ibm
infosphere information server
11.7
cross-site scripting
vulnerability
web script
html
data integration
platform
0.001 Low
EPSS
Percentile
19.2%
IBM InfoSphere Information Server is a set of data integration platforms from International Business Machines (IBM). The platform can be used to integrate data information obtained from various sources. A cross-site scripting vulnerability exists in IBM InfoSphere Information Server version 11.7, which stems from the application’s lack of effective filtering and escaping of user-supplied data, and can be exploited by an attacker to execute arbitrary Web script or HTML by injecting a crafted payload.
| CPE | Name | Operator | Version |
|---|---|---|---|
| ibm infosphere information server | eq | 11.7 |
Related
cvelist
cvelist
CVE-2023-28529 IBM InfoSphere Information Server 11.7
2023-05-19 15:44:16
prion
prion
Cross site scripting
2023-05-19 16:15:00
cve
cve
CVE-2023-28529
2023-05-19 16:15:14
nvd
nvd
CVE-2023-28529
2023-05-19 16:15:14
