CVE-2010-2433

2010-06-24T12:17:00
ID CVE-2010-2433
Type cve
Reporter cve@mitre.org
Modified 2017-08-17T01:32:00

Description

Multiple cross-site scripting (XSS) vulnerabilities in content/internalError.jsp in IBM WebSphere ILOG JRules 6.7 allow remote attackers to inject arbitrary web script or HTML via an RTS URL to (1) explore/explore.jsp, (2) compose/compose.jsp, or (3) home.jsp in faces/.